Home | Topics | Links | About

LDAP run-time configuration (RTC) cn=config

OpenLDAP version 2.3 introduced an optional feature whereby configuration may be performed at run-time using a DIT (Directory Information Tree) entry called cn=config. This article explains how to enable and use the cn=config DIT aka run-time configuration (RTC).

Enabling cn=config run-time configuration features

There is an online tutorial on this here.

Using cn=config to change slapd parameters

This is an example that shows how to use the run-time configuration feature or openldap to change parameters. In this example, we are changing the intial value (16) of the parameter olcDbSearchStack to 32.

Find the parameter you want to change :

This is how you check current value of a configuration parameter.

ldapsearch -W -x -D cn=admin,cn=config -b cn=config | olcDbSearchStack

Change the parameter :

Now this is how you update the value of the parameter olcDbSearchStack.

ldapmodify -x -D cn=admin,cn=config -W
dn: olcDatabase={1}bdb,cn=config
replace: olcDbSearchStack
olcDbSearchStack: 32

Labels: howto, services

Comment

Full name:

E-Mail:

Website:

Enter your comment (wiki syntax is allowed):

Please fill all the letters into the box to prove you're human. VZWDE

Subscribe to comments