title: OpenDJ initial and final configs link: https://onemoretech.wordpress.com/2012/11/20/opendj-initial-and-final-configs/ author: lembobro description: post_id: 3694 created: 2012/11/20 18:01:31 created_gmt: 2012/11/20 22:01:31 comment_status: closed post_name: opendj-initial-and-final-configs status: publish post_type: post

OpenDJ initial and final configs

Here's are a couple of LDIF files you can use to modify the default OpenDJ config during initial setup and then lock it down with something a bit more production ready. Here's the opendj-initial-config.ldif file:

dn: cn=config
changetype: modify
replace: ds-cfg-check-schema
ds-cfg-check-schema: false
-
replace: ds-cfg-idle-time-limit
ds-cfg-idle-time-limit: 1800 seconds
-
replace: ds-cfg-invalid-attribute-syntax-behavior
ds-cfg-invalid-attribute-syntax-behavior: warn
-
replace: ds-cfg-lookthrough-limit
ds-cfg-lookthrough-limit: 0
-
replace: ds-cfg-single-structural-objectclass-behavior
ds-cfg-single-structural-objectclass-behavior: warn
-
replace: ds-cfg-size-limit
ds-cfg-size-limit: 25000
-
replace: ds-cfg-time-limit
ds-cfg-time-limit: 300 seconds

dn: cn=Root Password Policy,cn=Password Policies,cn=config
changetype: modify
replace: ds-cfg-allow-pre-encoded-passwords
ds-cfg-allow-pre-encoded-passwords: true

dn: cn=Default Password Policy,cn=Password Policies,cn=config
changetype: modify
replace: ds-cfg-allow-pre-encoded-passwords
ds-cfg-allow-pre-encoded-passwords: true

dn: ds-cfg-backend-id=userRoot,cn=Backends,cn=config
changetype: modify
replace: ds-cfg-db-cache-percent
ds-cfg-db-cache-percent: 50
-
replace: ds-cfg-index-entry-limit
ds-cfg-index-entry-limit: 100000

Here's the opendj-final-config.ldif file:

dn: cn=config
changetype: modify
replace: ds-cfg-check-schema
ds-cfg-check-schema: true

dn: cn=UID Unique Attribute,cn=Plugins,cn=config
changetype: modify
replace: ds-cfg-enabled
ds-cfg-enabled: true

dn: cn=Referential Integrity,cn=Plugins,cn=config
changetype: modify
replace: ds-cfg-enabled
ds-cfg-enabled: true

Copyright 2004-2019 Phil Lembo