Legido Wiki

User Tools

Site Tools

Trace:
informatica:linux:ldap

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revisionBoth sides next revision
informatica:linux:ldap [2010/11/26 16:51] 95.20.4.69informatica:linux:ldap [2010/11/26 16:56] – s 95.20.4.69
Line 100: Line 100:
 checkpoint 128 15 checkpoint 128 15
 </code>  </code> 
 +
  
 ===== Arrancar ldap ===== ===== Arrancar ldap =====
  
-Para arrancar ldap con ese archivo de configuracion:+No se por que demonios el '/etc/init.d/slpad start' me arranca malamente el demonio. Mejor hacerlo a mano (con mucho debug, con la opcion -d):
  
-  sudo /usr/sbin/slapd -ldap://192.168.1.17/ -g openldap -u openldap -/etc/ldap/ldap.conf -d 255&+  sudo /usr/sbin/slapd -d 255 -f /etc/ldap/ldap.conf -g openldap -u openldap -h ldap://192.168.1.17 &
      
 Comprobar que ha arrancado: Comprobar que ha arrancado:
Line 113: Line 114:
   2048 pts/0    Sl     0:00 /usr/sbin/slapd -h ldap://192.168.1.17/ -g openldap -u openldap -f /etc/ldap/ldap.conf -d 255   2048 pts/0    Sl     0:00 /usr/sbin/slapd -h ldap://192.168.1.17/ -g openldap -u openldap -f /etc/ldap/ldap.conf -d 255
      
 +Para pararlo matar el proceso con kill
 +
 +===== Insertar registro =====
 +
 +1. Crear un archivo .ldif:
 +
 +  sudo vim /tmp/ejemplo1.ldif
 +
 +Con el siguiente contenido:
 +
 +<code>
 +## DEFINE DIT ROOT/BASE/SUFFIX ####
 +## uses RFC 2377 format
 +## replace example and com as necessary below
 +## or for experimentation leave as is
 +
 +## dcObject is an AUXILLIARY objectclass and MUST
 +## have a STRUCTURAL objectclass (organization in this case)
 +# this is an ENTRY sequence and is preceded by a BLANK line
 +
 +dn: dc=example,dc=com
 +dc: example
 +description: My wonderful company as much text as you want to place 
 + in this line up to 32K continuation data for the line above must 
 + have <CR> or <CR><LF> i.e. ENTER works 
 + on both Windows and *nix system - new line MUST begin with ONE SPACE
 +objectClass: dcObject
 +objectClass: organization
 +o: Example, Inc.
 +
 +## FIRST Level hierarchy - people 
 +## uses mixed upper and lower case for objectclass
 +# this is an ENTRY sequence and is preceded by a BLANK line
 +
 +dn: ou=people, dc=example,dc=com
 +ou: people
 +description: All people in organisation
 +objectclass: organizationalunit
 +
 +## SECOND Level hierarchy
 +## ADD a single entry under FIRST (people) level
 +# this is an ENTRY sequence and is preceded by a BLANK line
 +# the ou: Human Resources is the department name
 +
 +dn: cn=Robert Smith,ou=people,dc=example,dc=com
 +objectclass: inetOrgPerson
 +cn: Robert Smith
 +cn: Robert J Smith
 +cn: bob  smith
 +sn: smith
 +uid: rjsmith
 +userpassword: rJsmitH
 +carlicense: HISCAR 123
 +homephone: 555-111-2222
 +mail: r.smith@example.com
 +mail: rsmith@example.com
 +mail: bob.smith@example.com
 +description: swell guy
 +ou: Human Resources
 +</code>
 +
 +2. Insertar el registro:
 +
 +  ldapadd -H ldap://192.168.1.17 -x -D "cn=jimbob,dc=example,dc=com" -f /srv/example.ldif -w dirtysecret
 +
 +===== Buscar registro =====
 +
 +  ldapsearch -H ldap://192.168.1.17 -LL -b ou=people,dc=example,dc=com "{mail=*smith*)" sn cn mail
 +)
 +Me ha salido bien antes, ahora no me furrula (quiza porque borre el registro
 +
informatica/linux/ldap.txt · Last modified: 2015/04/13 20:19 by 127.0.0.1