From 992a033f6c6b02b8621ff5567d131b2314cdd788 Mon Sep 17 00:00:00 2001
From: godog <godog@autistici.org>
Date: Sun, 14 Oct 2018 13:53:43 +0200
Subject: [PATCH] ldap: run service in group openldap

---
 roles/ldap/tasks/main.yml | 7 +------
 1 file changed, 1 insertion(+), 6 deletions(-)

diff --git a/roles/ldap/tasks/main.yml b/roles/ldap/tasks/main.yml
index 2da8b42e..76ddbcea 100644
--- a/roles/ldap/tasks/main.yml
+++ b/roles/ldap/tasks/main.yml
@@ -44,11 +44,6 @@
     home: /var/lib/ldap
     createhome: no
     system: yes
-- name: Add slapd-prometheus-exporter to ldap group
-  user:
-    name: slapd-prometheus-exporter
-    groups: openldap
-    append: yes
 
 # Make sure the monitoring exporter can access the LDAP socket.
 - file:
@@ -59,7 +54,7 @@
     dest: /etc/systemd/system/slapd-prometheus-exporter.service.d/float.conf
     content: |
       [Service]
-      Group: openldap
+      Group=openldap
   notify: reload slapd-prometheus-exporter
 
 # Install the LDAP configuration
-- 
GitLab