-
Notifications
You must be signed in to change notification settings - Fork 10
/
lload.conf
91 lines (62 loc) · 2.26 KB
/
lload.conf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
#
# See lloadd.conf(5) for details on configuration options.
# This file should NOT be world readable.
#
################################################################################
# Global configuration options
################################################################################
include /usr/local/openldap/etc/openldap/schema/core.schema
loglevel 256
pidfile /usr/local/openldap/var/run/lload.pid
argsfile /usr/local/openldap/var/run/lload.args
# Load dynamic backend modules:
modulepath /usr/local/openldap/libexec/openldap
moduleload lloadd.la
backend lload
# Specify the maximum LDAP PDU size accepted coming from clients. The default is 262143.
sockbuf_max_incoming_client 4194303
# Specify the maximum LDAP PDU size accepted coming from upstream connections. The default is 4194303.
sockbuf_max_incoming_upstream 4194303
# Note: LDAP PDU (Protocol Data Unit) = one LDAP message
# when proxying an operation, pass the client's authorized identity using the proxy authorization control (RFC 4370)
feature proxyauthz
################################################################################
# TLS options
################################################################################
# SSL configuration
#TLSCACertificateFile @TESTDIR@/tls/ca/certs/testsuiteCA.crt
#TLSCertificateKeyFile @TESTDIR@/tls/private/localhost.key
#TLSCertificateFile @TESTDIR@/tls/certs/localhost.crt
#TLSVerifyClient try
################################################################################
# Backend configuration
################################################################################
# entry point for load-balancing
listen ldap://:1389
bindconf
bindmethod=simple
binddn="cn=Manager,dc=my-domain,dc=com"
credentials=secret
# tls_cacert=@TESTDIR@/tls/ca/certs/testsuiteCA.crt
backend-server uri=ldap://localhost:389/
numconns=3
bindconns=3
retry=5000
max-pending-ops=20
conn-max-pending=3
backend-server uri=ldap://localhost:390/
numconns=3
bindconns=3
retry=5000
max-pending-ops=20
conn-max-pending=3
backend-server uri=ldap://localhost:391/
numconns=3
bindconns=3
retry=5000
max-pending-ops=20
conn-max-pending=3
database config
rootdn cn=config
rootpw secret
database monitor