Openldap-2.4.44 installation tutorial 04/04 Update SLTechnology News&Howtos

Openldap-2.4.44 installation tutorial

2025-04-04 Update From: SLTechnology News&Howtos shulou NAV: SLTechnology News&Howtos > Internet Technology >

Shulou(Shulou.com)06/02 Report--

This article mainly introduces the "openldap-2.4.44 installation tutorial". In the daily operation, I believe many people have doubts about the openldap-2.4.44 installation tutorial. The editor consulted all kinds of materials and sorted out simple and easy-to-use methods of operation. I hope it will be helpful to answer the doubts of "openldap-2.4.44 installation tutorial". Next, please follow the editor to study!

Https://www.tutorialspoint.com/linux_admin/install_and_configure_open_ldap.htm

# install openldap-clients/openldap-servers [root@openldap ldap] # yum install openldap-clients openldap-servers# Test [root@openldap ldap] # slaptest-uconfig file testing succeeded# start [root@openldap ldap] # service slapd start# modify olcSuffix/olcRootDN/olcRootPW [root@openldap ldap] # slappasswd-s 123456 {SSHA} 5AeSW/wI7nDvTcuPsRPitliGW7CfF8xV# # / etc/openldap/slapd.d/cn\ = config/olcDatabase= {2} hdb# [root@openldap ldap] # vi / opt/0_ Modify_olc_bash.ldifdn: olcDatabase= {2} hdb Cn=configchangetype: modifyreplace: olcSuffixolcSuffix: dc=harry,dc=comdn: olcDatabase= {2} hdb,cn=configchangetype: modifyreplace: olcRootDNolcRootDN: cn=Manager,dc=harry,dc=comdn: olcDatabase= {2} hdb,cn=configchangetype: modifyreplace: olcRootPWolcRootPW: {SSHA} 5AeSW/wI7nDvTcuPsRPitliGW7CfF8xV#ldapmodify modify [root@openldap ldap] # ldapmodify-Y EXTERNAL-H ldapi:///-f / opt/0_modify_olc_bash.ldifSASL/EXTERNAL authentication startedSASL username: gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=authSASL SSF: 0modifying entry "olcDatabase= {2} hdb,cn=config" modifying entry "olcDatabase= {2} hdb Cn=config "modifying entry" olcDatabase = {2} hdb,cn=config "# setup db [root@openldap ldap] # cp / usr/share/openldap-servers/DB_CONFIG.example / var/lib/ldap/DB_ config [root @ openldap ldap] # chown ldap:ldap / var/lib/ldap/*#### add admin/ou [root@openldap ldap] # vi / opt/4_ldapadmin.ldifdn: cn=Manager,dc=harry,dc=comobjectClass: organizationalRolecn: Managerdn: dc=harry,dc=comdc: harryobjectClass: topobjectClass: organizationobjectClass: dcObjecto: harrydn: ou=Groups,dc=harry Dc=comou: GroupsobjectClass: organizationalUnitdn: ou=Users,dc=harry,dc=comou: UsersobjectClass: organizationalUnit [root@openldap ldap] # ldapadd-Y EXTERNAL-H ldapi:///-f / opt/4_ldapadmin.ldif### search check [root@openldap opt] # ldapsearch-b 'dc=harry,dc=com'-H ldapi:///-LLLSASL/EXTERNAL authentication startedSASL username: gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=authSASL SSF: 0dn: dc=harry,dc=comdc: topobjectClass: domaindn: ou=Groups,dc=harry,dc=comou: GroupsobjectClass: organizationalUnitdn: ou=Users,dc=harry Dc=comou: UsersobjectClass: organizationalUnit### modify monitor [root@openldap opt] # vi / opt/1_modify_monitor.ldifdn: olcDatabase= {1} monitor,cn=configchangetype: modifyreplace: olcAccessolcAccess: {0} to * by dn.base= "gidNumber=0+uidNumber=0,cn=peercred,cn=extern al,cn=auth" read by dn.base= "cn=Manager,dc=harry Dc=com "read by * none [root@openldap ldap] # ldapmodify-Y EXTERNAL-H ldapi:///-f / opt/1_modify_monitor.ldif# add memberof## when you add group that is, objectClass is groupOfUniqueNames. Add attribute as uniqueMember record The attribute memberOf## [root@openldap opt] # vi / opt/2_add_memberof.ldifdn: cn=module,cn=configcn: moduleobjectClass: olcModuleListolcModuleLoad: memberofolcModulePath: / usr/lib64/openldap [root@openldap opt] # vi / opt/3_add_memberof_config.ldifdn: olcOverlay=memberof,olcDatabase= {2} hdb,cn=configobjectClass: olcConfigobjectClass: olcMemberOfobjectClass: olcOverlayConfigobjectClass: topolcOverlay: memberofolcMemberOfDangling: ignoreolcMemberOfRefInt: TRUEolcMemberOfGroupOC: groupOfUniqueNamesolcMemberOfMemberAD: uniqueMemberolcMemberOfMemberOfAD: memberOf [root@openldap opt] # vi / opt/5_modify_refint.ldifdn: cn=module {0} is automatically added for the user Cn=configadd: olcmoduleloadolcmoduleload: refint [root@openldap opt] # vi / opt/6_add_refint_config.ldifdn: olcOverlay=refint,olcDatabase= {2} hdb,cn=configobjectClass: olcConfigobjectClass: olcOverlayConfigobjectClass: olcRefintConfigobjectClass: topolcOverlay: refintolcRefintAttribute: memberof uniqueMember manager owner## add user [root@openldap opt] # vi / opt/10_harrywu.ldifdn: cn=harrywu,ou=Users,dc=harry Dc=comobjectClass: inetOrgPersonobjectClass: posixAccountcn: harrywuuid: harrywuuidNumber: 1000gidNumber: 1000givenName: Harrysn: WuhomeDirectory: / home/harrywuloginShell: / bin/bashuserPassword: 123456 add group = > groupOfUniqueNames [root@openldap opt] # vi / opt/11_add_u_group1.ldifdn: cn=g1,ou=Groups,dc=harry,dc=comobjectClass: groupOfUniqueNamescn: g1uniqueMember: cn=harrywu,ou=Users,dc=harry,dc=com## verify whether cn=harrywu adds attributes memberOf [root@openldap opt] # ldapsearch-H ldapi:///-b 'dc=harry,dc=com' dn memberof...# harrywu, Users, harry.comdn: cn=harrywu Ou=Users,dc=harry,dc=commemberOf: cn=g1,ou=Groups,dc=harry,dc=com... At this point, the study on the "openldap-2.4.44 installation tutorial" is over. I hope to be able to solve your doubts. The collocation of theory and practice can better help you learn, go and try it! If you want to continue to learn more related knowledge, please continue to follow the website, the editor will continue to work hard to bring you more practical articles!

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.

*The comments in the above article only represent the author's personal views and do not represent the views and positions of this website. If you have more insights, please feel free to contribute and share.