icinga2: Add LDAP replication check.

Signed-off-by: Maximilian Wilhelm <max@sdn.clinic>

icinga2/commands.d/ldap.conf

@@ -0,0 +1,14 @@
+#
+# Check LDAP replication
+object CheckCommand "ldap_replication" {
+	import "plugin-check-command"
+
+	command = [  "/usr/local/share/monitoring-plugins/check_ldap_replication" ]
+
+	arguments = {
+		"--master" = "$ldap_master$"
+		"--mirror" = "$ldap_mirror$"
+		"--bind-dn" = "$ldap_bind_dn$"
+		"--sync-base" = "$ldap_sync_base$"
+	}
+}

icinga2/services/ldap.conf

@@ -15,3 +15,16 @@ apply Service "ldaps" {
 	assign where host.vars.ldap_fqdn && "ldap-master" in host.vars.roles
 	assign where host.vars.ldap_fqdn && "ldap-replica" in host.vars.roles
 }
+
+apply Service "ldap_replication" {
+        import "generic-service"
+
+	check_command = "ldap_replication"
+
+	vars.ldap_master = "ldaps://ldap-master.srv.in.ffho.net"
+	vars.ldap_mirror = "ldaps://" + host.vars.ldap_fqdn
+	vars.ldap_sync_base = "ou=sync-check,dc=ffho,dc=net"
+	vars.ldap_bind_dn = "uid=sync-check,ou=accounts,dc=ffho,dc=net"
+
+	assign where host.vars.ldap_fqdn && "ldap-replica" in host.vars.roles
+}