File: //etc/apparmor.d/abstractions/ldapclient
# ------------------------------------------------------------------
#
#    Copyright (C) 2011 Novell/SUSE
#
#    This program is free software; you can redistribute it and/or
#    modify it under the terms of version 2 of the GNU General Public
#    License published by the Free Software Foundation.
#
# ------------------------------------------------------------------
  abi <abi/3.0>,
  # files required by LDAP clients (e.g. nss_ldap/pam_ldap)
  /etc/ldap.conf            r,
  /etc/ldap.secret          r,
  /etc/openldap/*           r,
  /etc/openldap/cacerts/*   r,
  # SASL plugins and config
  /etc/sasl2/*              r,
  /usr/lib{,32,64}/sasl2/*  r,
  # local LDAP name service daemon
  @{run}/nslcd/socket  rw,
  include <abstractions/ssl_certs>
  # Include additions to the abstraction
  include if exists <abstractions/ldapclient.d>