Modify openldap.nix to get rid of tabs.

First try at openldap configuration. also an initial ISL.ldif and some example ldif and a list of commands that work when run on the server itself. Also, some different example ldif files

Change-Id: I0d702410fbf5a6aa4c626e4f1fc233bb72bad4e5

1 files changed, 3 insertions, 3 deletions

diff --git a/services/accounts/openldap.nix b/services/accounts/openldap.nix
index 764d7bf..e164fb4 100644
--- a/services/accounts/openldap.nix
+++ b/services/accounts/openldap.nix
@@ -116,7 +116,7 @@
 
             # This is needed because the memberof overlay has to do its
             # changes as a DN.
-            olcRootDN = "cn=admin,dc=internetsafetylabs,dc=org";
+            olcRootDN = "cn=ldap-admins,dc=internetsafetylabs,dc=org";
 
             # This should probably be commented out when there's nothing
             # horrible going on. It's important for bootstrapping and for
@@ -128,8 +128,8 @@
             #
             # TODO: we might consider adding some sort of auto-expiration
             # feature to the secret manager?
-            #olcRootPW = builtins.readFile
-            #    "/etc/nixos/secrets/openldap/root-password";
+            olcRootPW = builtins.readFile
+                "/etc/nixos/secrets/openldap/root-password";
 
             # TODO: once we have better formatting for this code (see the TODO
             # about an abstraction layer for long lines), the thinking behind