Closed baszoetekouw closed 1 year ago
Een eerste voorzichtige conclusie is dat ldap_attrs en ldap_entry (nog) niet geschikt zijn om de SRAM provisioning van de LDAP server te evenaren: https://github.com/ansible-collections/community.general/issues/3559 https://github.com/ansible-collections/community.general/issues/977
ldap changes doen we in oktober
Afzonderlijke producer en syncrepl consumers cn=Monitor toegevoegd https://code.stroeder.com/ldap/slapdcheck
The current ldap roles are kind of a mess:
ldap
andldap_services
has become blurry. Either clearly separate them or move them into a single role (maybe we can split out themain.yml
into multiple takas files with logical groupingldap_attrs
which is much more powerful than the oldldap_attr
and should allow us to get rid of the manual runs ofldapmodify
Please revamp these roles and clean them up again. Reviewing the ldap config at the same time is an added bonus ;)