1dn: olcOverlay={0}remoteauth,olcDatabase={1}@BACKEND@,cn=config 2objectClass: olcOverlayConfig 3objectclass: olcRemoteAuthCfg 4olcOverlay: {0}remoteauth 5olcRemoteAuthRetryCount: 3 6olcRemoteAuthTLS: starttls=critical 7 tls_cert="@TESTDIR@/tls/certs/localhost.crt" 8 tls_key="@TESTDIR@/tls/private/localhost.key" 9 tls_cacert="@TESTDIR@/tls/ca/certs/testsuiteCA.crt" 10 tls_reqcert=demand tls_reqsan=allow 11#openssl# tls_crlcheck=none 12olcRemoteAuthDNAttribute: seeAlso 13olcRemoteAuthDomainAttribute: o 14olcRemoteAuthDefaultDomain: default 15olcRemoteAuthDefaultRealm: @SURIP3@ 16olcRemoteAuthStore: FALSE 17olcRemoteAuthMapping: default file://@TESTDIR@/default_domain 18olcRemoteAuthMapping: working_ldaps @SURIP3@ 19olcRemoteAuthMapping: failing_ldaps @SURIP2@ 20olcRemoteAuthMapping: self @URIP1@ 21 22