Shulou(Shulou.com)06/01 Report--

This article introduces the knowledge of "detailed steps for linux to build ldap server". In the operation of actual cases, many people will encounter such a dilemma, so let the editor lead you to learn how to deal with these situations. I hope you can read it carefully and be able to achieve something!

1. Install openldap-servers software package

2. Check the location of the ldap template file:

3. Copy the ldap template file to the configuration file directory and modify the file name to slapd.conf.

4. Delete the original files in the / etc/openldap directory and keep these files. Note: the previous school hours is to delete schema files, leaving three directly, but if I delete the schema service during the test, I will fail.

5. Modify the permissions of the slapd.conf file:

6. Modify the sldap.conf configuration file as follows: (ok is mainly matched with red ones, and those that are not available are commented out.)

The code is as follows:

Include / etc/openldap/schema/corba.schema

Include / etc/openldap/schema/core.schema

Include / etc/openldap/schema/cosine.schema

Include / etc/openldap/schema/duaconf.schema

Include / etc/openldap/schema/dyngroup.schema

Include / etc/openldap/schema/inetorgperson.schema

Include / etc/openldap/schema/java.schema

Include / etc/openldap/schema/misc.schema

Include / etc/openldap/schema/nis.schema

Include / etc/openldap/schema/openldap.schema

Include / etc/openldap/schema/ppolicy.schema

Include / etc/openldap/schema/collective.schema

Allow bind_v2

Pidfile / var/run/openldap/slapd.pid argsfile / var/run/openldap/slapd.args

Database bdb suffix "dc=example,dc=com" checkpoint 1024 15 rootdn

"cn=Manager,dc=example,dc=com"

Rootpw redhat

Directory / var/lib/ldap

Index objectClass eq,pres

Index ou,cn,mail,surname,givenname eq,pres,sub

Index uidNumber,gidNumber,loginShell eq,pres

Index uid,memberUid eq,pres,sub

Database monitor

Access to * by dn.exact= "cn=Manager,dc=example,dc=com" read by * none

7. Restart the ldap server:

8. Create a ldap user directory:

9. Edit a script that automatically creates ldap users:

10. Execute this script to add users:

11. Export ldap users and groups to a file: (for example, only groups are used) users under, / etc/passwd

12. Install the software package:

13. Go to its directory and compile the ldap user group file:

14. Modify the migrate_common.ph file:

15. Execute the. / migrate_base.pl file, export it to a directory, and modify it, leaving only the three most basic configurations:

16. Use. / migrate_passwd.pl. / migrate_group.pl to compile the ldap user and group files we have exported: / mnt/user / mnt/group is the ldap user and group file exported from / etc/passwd / etc/group, respectively

/ date/user.ldif / date/group.ldif is a compiled file that ends with ldif

17. Take a look at several files we compiled under / date:

18. Add ldap users and groups:

First prompt for the password, and then add it successfully.

There is also a user who must first execute the base.ldif file, which is the most basic configuration.

This is the end of the "detailed steps for linux to build a ldap server". Thank you for reading. If you want to know more about the industry, you can follow the website, the editor will output more high-quality practical articles for you!

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.