- name: ensure ldapd db dir exists
  file:
    path: "{{ ldapd_dir }}"
    owner: "{{ ldapd_user }}"
    group: "{{ ldapd_group }}"
    state: directory
    mode: "0700"

- name: generate ldapd configuration
  template:
    src: etc-ldapd.conf.j2
    dest: /etc/ldapd.conf
    owner: "0"
    group: "0"
    mode: "0600"

- name: enable and start ldapd
  service:
    name: ldapd
    state: restarted
    enabled: true
    args: -r "{{ ldapd_dir }}"