Legido Wiki

User Tools

Site Tools

Trace:
informatica:linux:ldap

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
informatica:linux:ldap [2010/11/26 16:51] 95.20.4.69informatica:linux:ldap [2015/04/13 20:19] (current) – external edit 127.0.0.1
Line 100: Line 100:
 checkpoint 128 15 checkpoint 128 15
 </code>  </code> 
 +
 +
  
 ===== Arrancar ldap ===== ===== Arrancar ldap =====
  
-Para arrancar ldap con ese archivo de configuracion:+No se por que demonios el '/etc/init.d/slpad start' me arranca malamente el demonio. Mejor hacerlo a mano (con mucho debug, con la opcion -d):
  
-  sudo /usr/sbin/slapd -ldap://192.168.1.17/ -g openldap -u openldap -/etc/ldap/ldap.conf -d 255&+  sudo /usr/sbin/slapd -f /etc/ldap/ldap.conf -g openldap -u openldap -h ldap://192.168.1.17 &
      
 Comprobar que ha arrancado: Comprobar que ha arrancado:
  
   ps ax | grep ldap   ps ax | grep ldap
-  2047 pts/0    S      0:00 sudo /usr/sbin/slapd -h ldap://192.168.1.17/ -g openldap -u openldap -f /etc/ldap/ldap.conf -d 255 +  9122 ?        Ssl    0:00 /usr/sbin/slapd -f /etc/ldap/ldap.conf -g openldap -u openldap -h ldap://192.168.1.17 
-  2048 pts/0    Sl     0:00 /usr/sbin/slapd -ldap://192.168.1.17-g openldap -u openldap -f /etc/ldap/ldap.conf -d 255 + 
-  +Para pararlo matar el proceso con kill 
 + 
 +===== Insertar registro ===== 
 + 
 +1. Crear un archivo .ldif: 
 + 
 +  sudo vim /tmp/ejemplo1.ldif 
 + 
 +Con el siguiente contenido: 
 + 
 +<code> 
 +## DEFINE DIT ROOT/BASE/SUFFIX #### 
 +## uses RFC 2377 format 
 +## replace example and com as necessary below 
 +## or for experimentation leave as is 
 + 
 +## dcObject is an AUXILLIARY objectclass and MUST 
 +## have a STRUCTURAL objectclass (organization in this case) 
 +# this is an ENTRY sequence and is preceded by a BLANK line 
 + 
 +dn: dc=example,dc=com 
 +dc: example 
 +description: My wonderful company as much text as you want to place  
 + in this line up to 32K continuation data for the line above must  
 + have <CR> or <CR><LF> i.e. ENTER works  
 + on both Windows and *nix system new line MUST begin with ONE SPACE 
 +objectClass: dcObject 
 +objectClass: organization 
 +o: Example, Inc. 
 + 
 +## FIRST Level hierarchy - people  
 +## uses mixed upper and lower case for objectclass 
 +# this is an ENTRY sequence and is preceded by a BLANK line 
 + 
 +dn: ou=people, dc=example,dc=com 
 +ou: people 
 +description: All people in organisation 
 +objectclass: organizationalunit 
 + 
 +## SECOND Level hierarchy 
 +## ADD a single entry under FIRST (people) level 
 +# this is an ENTRY sequence and is preceded by a BLANK line 
 +# the ou: Human Resources is the department name 
 + 
 +dn: cn=Robert Smith,ou=people,dc=example,dc=com 
 +objectclass: inetOrgPerson 
 +cn: Robert Smith 
 +cn: Robert J Smith 
 +cn: bob  smith 
 +snsmith 
 +uid: rjsmith 
 +userpassword: rJsmitH 
 +carlicense: HISCAR 123 
 +homephone: 555-111-2222 
 +mail: r.smith@example.com 
 +mail: rsmith@example.com 
 +mail: bob.smith@example.com 
 +description: swell guy 
 +ou: Human Resources 
 +</code> 
 + 
 +2. Insertar el registro: 
 + 
 +  ldapadd -ldap://192.168.1.17 --D "cn=jimbob,dc=example,dc=com" -f /srv/example.ldif -w dirtysecret 
 + 
 + 
 +===== Buscar registro ===== 
 + 
 +  ldapsearch -H ldap://192.168.1.17 -LL -b ou=people,dc=example,dc=com "{mail=*smith*)" sn cn mail 
 + 
 +Me ha salido bien antes, ahora no me furrula (quiza porque borre el registro 
 + 
 +  ldapsearch -xh 192.168.1.17 -b '' -s base subschemaSubentry
informatica/linux/ldap.1290790279.txt.gz · Last modified: 2015/04/13 20:19 (external edit)