X-Git-Url: https://git.adam-barratt.org.uk/?a=blobdiff_plain;f=doc%2Fslapd-config.txt;h=5e39099f63693d2bcd41e875b4402cc1ec8f1e00;hb=f53712430a0cf937f4b606c29c8a3be6079d8d82;hp=856726f7566d9e2e1bf71cc2c1bf563e92403e57;hpb=57d51d7e5cc0a79bb97a55d9eaa0263a4cfc2005;p=mirror%2Fuserdir-ldap.git

diff --git a/doc/slapd-config.txt b/doc/slapd-config.txt
index 856726f..5e39099 100644
--- a/doc/slapd-config.txt
+++ b/doc/slapd-config.txt
@@ -27,7 +27,7 @@ access to attrs=emailforward
         by addr=127.0.0.1 read
         by domain=.*\.debian\.org read
         by * none
-access to attrs=c,l,loginShell,ircNick,labeledURL
+access to attrs=c,l,loginShell,ircNick
         by dn="uid=admin,ou=users,dc=debian,dc=org" write
         by group="uid=admin,ou=users,dc=debian,dc=org" write
         by self write
@@ -42,8 +42,22 @@ access to *
         by dn="uid=admin,ou=users,dc=debian,dc=org" write
         by group="uid=admin,ou=users,dc=debian,dc=org" write
 
+# Overlays are useful to enforce constraints:
+
+moduleload /usr/lib/ldap/unique.so
+overlay unique
+unique_uri ldap:///ou=users,dc=debian,dc=org?uidNumber,uid,keyFingerPrint?sub
+unique_uri ldap:///ou=groups,dc=debian,dc=org?gidNumber,cn?sub
+
 # End----------
 
+Note that in more modern versions of slapd, the "by addr" and "by domain"
+syntax has changed and the following should be used instead:
+        by peername.ip=127.0.0.1 read
+        by domain.subtree=debian.org read
+
+
+
 Here is the initial seed file to import and setup the proper entries:
 
 dn: dc=org