security.acme.certs."ldap" = config.myServices.databasesCerts // {
user = "openldap";
group = "openldap";
- plugins = [ "fullchain.pem" "key.pem" "cert.pem" "account_key.json" "account_reg.json" ];
domain = "ldap.immae.eu";
postRun = ''
systemctl restart openldap.service
enable = true;
dataDir = cfg.dataDir;
urlList = [ "ldap://" "ldaps://" ];
+ logLevel = "none";
extraConfig = ldapConfig;
extraDatabaseConfig = ''
moduleload memberof