Legido Wiki

User Tools

Site Tools

Trace:
informatica:linux:ldap

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
Next revisionBoth sides next revision
informatica:linux:ldap [2010/11/26 16:51] 95.20.4.69informatica:linux:ldap [2010/11/26 17:06] 95.20.4.69
Line 100: Line 100:
 checkpoint 128 15 checkpoint 128 15
 </code>  </code> 
 +
  
 ===== Arrancar ldap ===== ===== Arrancar ldap =====
  
-Para arrancar ldap con ese archivo de configuracion:+No se por que demonios el '/etc/init.d/slpad start' me arranca malamente el demonio. Mejor hacerlo a mano (con mucho debug, con la opcion -d):
  
-  sudo /usr/sbin/slapd -ldap://192.168.1.17/ -g openldap -u openldap -/etc/ldap/ldap.conf -d 255&+  sudo /usr/sbin/slapd -d 255 -f /etc/ldap/ldap.conf -g openldap -u openldap -h ldap://192.168.1.17 &
      
 Comprobar que ha arrancado: Comprobar que ha arrancado:
Line 113: Line 114:
   2048 pts/0    Sl     0:00 /usr/sbin/slapd -h ldap://192.168.1.17/ -g openldap -u openldap -f /etc/ldap/ldap.conf -d 255   2048 pts/0    Sl     0:00 /usr/sbin/slapd -h ldap://192.168.1.17/ -g openldap -u openldap -f /etc/ldap/ldap.conf -d 255
      
 +Para pararlo matar el proceso con kill
 +
 +===== Insertar registro =====
 +
 +1. Crear un archivo .ldif:
 +
 +  sudo vim /tmp/ejemplo1.ldif
 +
 +Con el siguiente contenido:
 +
 +<code>
 +## DEFINE DIT ROOT/BASE/SUFFIX ####
 +## uses RFC 2377 format
 +## replace example and com as necessary below
 +## or for experimentation leave as is
 +
 +## dcObject is an AUXILLIARY objectclass and MUST
 +## have a STRUCTURAL objectclass (organization in this case)
 +# this is an ENTRY sequence and is preceded by a BLANK line
 +
 +dn: dc=example,dc=com
 +dc: example
 +description: My wonderful company as much text as you want to place 
 + in this line up to 32K continuation data for the line above must 
 + have <CR> or <CR><LF> i.e. ENTER works 
 + on both Windows and *nix system - new line MUST begin with ONE SPACE
 +objectClass: dcObject
 +objectClass: organization
 +o: Example, Inc.
 +
 +## FIRST Level hierarchy - people 
 +## uses mixed upper and lower case for objectclass
 +# this is an ENTRY sequence and is preceded by a BLANK line
 +
 +dn: ou=people, dc=example,dc=com
 +ou: people
 +description: All people in organisation
 +objectclass: organizationalunit
 +
 +## SECOND Level hierarchy
 +## ADD a single entry under FIRST (people) level
 +# this is an ENTRY sequence and is preceded by a BLANK line
 +# the ou: Human Resources is the department name
 +
 +dn: cn=Robert Smith,ou=people,dc=example,dc=com
 +objectclass: inetOrgPerson
 +cn: Robert Smith
 +cn: Robert J Smith
 +cn: bob  smith
 +sn: smith
 +uid: rjsmith
 +userpassword: rJsmitH
 +carlicense: HISCAR 123
 +homephone: 555-111-2222
 +mail: r.smith@example.com
 +mail: rsmith@example.com
 +mail: bob.smith@example.com
 +description: swell guy
 +ou: Human Resources
 +</code>
 +
 +2. Insertar el registro:
 +
 +  ldapadd -H ldap://192.168.1.17 -x -D "cn=jimbob,dc=example,dc=com" -f /srv/example.ldif -w dirtysecret
 +
 +
 +===== Buscar registro =====
 +
 +  ldapsearch -H ldap://192.168.1.17 -LL -b ou=people,dc=example,dc=com "{mail=*smith*)" sn cn mail
 +
 +Me ha salido bien antes, ahora no me furrula (quiza porque borre el registro
 +
 +  ldapsearch -xh 192.168.1.17 -b '' -s base subschemaSubentry
informatica/linux/ldap.txt · Last modified: 2015/04/13 20:19 by 127.0.0.1