From da6ed9d4ac0cf6fded217691bb935b135fc7784e Mon Sep 17 00:00:00 2001
From: Timo Makinen <tmakinen@foo.sh>
Date: Thu, 6 Jun 2019 02:29:59 +0300
Subject: [PATCH] force sasl to use external (certificates) when connecting
 ldap as root

---
 roles/ldap/client/templates/ldaprc.j2 | 1 +
 1 file changed, 1 insertion(+)

diff --git a/roles/ldap/client/templates/ldaprc.j2 b/roles/ldap/client/templates/ldaprc.j2
index 2109aaf..5f2de69 100644
--- a/roles/ldap/client/templates/ldaprc.j2
+++ b/roles/ldap/client/templates/ldaprc.j2
@@ -1,2 +1,3 @@
 TLS_KEY {{ tls_private }}/{{ inventory_hostname }}.key
 TLS_CERT {{ tls_certs }}/{{ inventory_hostname }}.crt
+MECH external