[Date Prev][Date Next]
Re: Securing cn=config and allowing micro-engineering
--On Thursday, October 20, 2011 6:36 PM +0300 Nick Milas
Manually editing slapd.d files is the surest way of causing a problem
that prevents slapd from restarting.
slapcat -n0 -F old/slapd.d > config.ldif
slapadd -n0 -F new/slapd.d -l config.ldif
test using new/slapd.d
OK, I see. Valuable info.
I would note that OpenLDAP 2.5 (when released) adds a "slapmodify" command
per my request. It allows you to do offline modifications of cn=config in
a way similar to ldapmodify. This will also keep the CRC checksum intact.
Sr. Member of Technical Staff
A Division of VMware, Inc.
Zimbra :: the leader in open source messaging and collaboration