| 1 | # This file is sourced by dirsrv upon startup to set |
|---|
| 2 | # the default environment for all directory server instances. |
|---|
| 3 | # To set instance specific defaults, use the file in the same |
|---|
| 4 | # directory called dirsrv-instance where "instance" |
|---|
| 5 | # is the name of your directory server instance e.g. |
|---|
| 6 | # dirsrv-localhost for the slapd-localhost instance. |
|---|
| 7 | |
|---|
| 8 | # This file is in systemd EnvironmentFile format - see man systemd.exec |
|---|
| 9 | |
|---|
| 10 | # In order to make more file descriptors available |
|---|
| 11 | # to the directory server, first make sure the system |
|---|
| 12 | # hard limits are raised, then use ulimit - uncomment |
|---|
| 13 | # out the following line and change the value to the |
|---|
| 14 | # desired value |
|---|
| 15 | # ulimit -n 8192 |
|---|
| 16 | # note - if using systemd, ulimit won't work - you must edit |
|---|
| 17 | # the systemd unit file for directory server to add the |
|---|
| 18 | # LimitNOFILE option - see man systemd.exec for more info |
|---|
| 19 | |
|---|
| 20 | # A per instance keytab does not make much sense for servers. |
|---|
| 21 | # Kerberos clients use the machine FQDN to obtain a ticket like ldap/FQDN, there |
|---|
| 22 | # is nothing that can make a client understand how to get a per-instance ticket. |
|---|
| 23 | # Therefore by default a keytab should be considered a per server option. |
|---|
| 24 | |
|---|
| 25 | # Also this file is sourced for all instances, so again all |
|---|
| 26 | # instances would ultimately get the same keytab. |
|---|
| 27 | |
|---|
| 28 | # Finally a keytab is normally named either krb5.keytab or <service>.keytab |
|---|
| 29 | |
|---|
| 30 | # In order to use SASL/GSSAPI (Kerberos) the directory |
|---|
| 31 | # server needs to know where to find its keytab |
|---|
| 32 | # file - uncomment the following line and set |
|---|
| 33 | # the path and filename appropriately |
|---|
| 34 | # if using systemd, omit the "; export VARNAME" at the end |
|---|
| 35 | # KRB5_KTNAME=/etc/dirsrv/myname.keytab ; export KRB5_KTNAME |
|---|
| 36 | |
|---|
| 37 | # how many seconds to wait for the startpid file to show |
|---|
| 38 | # up before we assume there is a problem and fail to start |
|---|
| 39 | # if using systemd, omit the "; export VARNAME" at the end |
|---|
| 40 | #STARTPID_TIME=10 ; export STARTPID_TIME |
|---|
| 41 | # how many seconds to wait for the pid file to show |
|---|
| 42 | # up before we assume there is a problem and fail to start |
|---|
| 43 | # if using systemd, omit the "; export VARNAME" at the end |
|---|
| 44 | #PID_TIME=600 ; export PID_TIME |
|---|
