informatica:linux:ldap
This is an old revision of the document!
Table of Contents
ldap
open-ldap slapd ldap
Instalación
sudo aptitude install slapd ldap-utils
ldap.conf
sudo mv /etc/ldap/ldap.conf /etc/ldap/ldap.conf.bak
sudo vim /etc/ldap/ldap/ldap.conf
# ###### SAMPLE 1 - SIMPLE DIRECTORY ############ # # NOTES: inetorgperson picks up attributes and objectclasses # from all three schemas # # NB: RH Linux schemas in /etc/openldap # include /etc/ldap/schema/core.schema include /etc/ldap/schema/cosine.schema include /etc/ldap/schema/inetorgperson.schema # NO SECURITY - no access clause # defaults to anonymous access for read # only rootdn can write # NO REFERRALS # DON'T bother with ARGS file unless you feel strongly # slapd scripts stop scripts need this to work pidfile /var/run/slapd.pid # enable a lot of logging - we might need it # but generates huge logs loglevel 255 # MODULELOAD definitions # not required (comment out) before version 2.3 moduleload back_bdb.la # NO TLS-enabled connections # backend definition not required ####################################################################### # bdb database definitions # # replace example and com below with a suitable domain # # If you don't have a domain you can leave it since example.com # is reserved for experimentation or change them to my and inc # ####################################################################### database bdb suffix "dc=example, dc=com" # root or superuser rootdn "cn=jimbob, dc=example, dc=com" rootpw dirtysecret # The database directory MUST exist prior to running slapd AND # change path as necessary directory /srv/ldapdb # Indices to maintain for this directory # unique id so equality match only index uid eq # allows general searching on commonname, givenname and email index cn,gn,mail eq,sub # allows multiple variants on surname searching index sn eq,sub # sub above includes subintial,subany,subfinal # optimise department searches index ou eq # if searches will include objectClass uncomment following # index objectClass eq # shows use of default index parameter index default eq,sub # indices missing - uses default eq,sub index telephonenumber # other database parameters # read more in slapd.conf reference section cachesize 10000 checkpoint 128 15
Arrancar ldap
Para arrancar ldap con ese archivo de configuracion:
sudo /usr/sbin/slapd -h ldap://192.168.1.17/ -g openldap -u openldap -f /etc/ldap/ldap.conf -d 255&
Comprobar que ha arrancado:
ps ax | grep ldap 2047 pts/0 S 0:00 sudo /usr/sbin/slapd -h ldap://192.168.1.17/ -g openldap -u openldap -f /etc/ldap/ldap.conf -d 255 2048 pts/0 Sl 0:00 /usr/sbin/slapd -h ldap://192.168.1.17/ -g openldap -u openldap -f /etc/ldap/ldap.conf -d 255
informatica/linux/ldap.1290790279.txt.gz · Last modified: 2015/04/13 20:19 (external edit)