Symas OpenLDAP 2.5

Installation instructions
RHEL7
RHEL8
SLES 15.3
Debian 10
Debian 11
Ubuntu 18.04
Ubuntu 20.04

Upgrades
SELinux
Systemd
Source

Symas OpenLDAP 2.5: Systemd configuration

With systemd, there are two seperate types of configuration changes.

Overriding system limitations

Sometimes it is necessary to provide more resources to the slapd process. Most commonly this is the number of file descriptors available to the process. The following is an example of how this is done with Symas OpenLDAP 2.5. All commands run as root.
  1. RHEL: mkdir -p /etc/systemd/system/symas-openldap-servers.service.d
    Debian/Ubuntu: mkdir -p /etc/systemd/system/symas-openldap-server.service.d
  2. Create the file override.conf
  3. The following contents would allow the slapd process to have up to approximately 524,000 active connections
    [Service]
    LimitNOFILE=524288
  4. The systemd daemon must be reloaded for this to take effect:
    systemctl daemon-reload
  5. When ready, restart the slapd process
    systemctl restart slapd

Overriding slapd defaults

By default, the slapd process will run as the root user and listen on ldap:/// and ldapi:///
To change these settings requires making a systemd override file
edit /etc/default/symas-openldap
Options that can be overridden: For example, to listen on the ldap, ldaps, and ldapi ports and socket:
SLAPD_URLS="ldap:/// ldaps:/// ldapi:///"
To run as the user and group ldap
SLAPD_OPTIONS="-u ldap -g ldap"
Need help? Email support@symas.com
https://www.symas.com