Shulou(Shulou.com)06/01 Report--

Installation of Win2012 domain control

Principle:

To log in to the mrbs system, you need to enter a user name and password. Mrbs gets the password and the user verifies with the domain control server, and the user is allowed to log in to the mrbs system only if the verification is successful:

Preliminary preparatory work

1. Need to configure static ip

two。 It better make sense to change the host name. It doesn't matter if I forget to change it.

Installation

Open the server management and click to add roles and functions (some unimportant pictures are all big Log so as to save space, and I released the important ones so that my friends can't see them clearly and can't do them)

Here are some tips to prepare:

Select a role-based feature installation because it is a local installation rather than a remote installation to other installations

By default, choose your machine and choose the next step.

Select the active directory domain service and dns server:

I chose the telnet client for this step because it is possible

Directly select the next step of installation

Click on the exclamation point to open:

Select the notebook as the domain control:

Choose Xinlin because it is a new installation, think about it for yourself, write your domain name below, it is best not to conflict with the Internet. Mine is the next step after wuyantao.com:

The function level I choose is 2012. If you look at your company, you can choose 2008, or 2003 lower.

Password setting next step: go with you

The above can be ignored because it is a new installation of DNS without other machine delegation.

Here's a random one. I'm a wuyantao.

The following is the click to view the steps: after reading the closure, I guess you don't understand, in fact, our configuration just now is to generate the following file to see if it is very convenient to have graphics. Everyone says that Microsoft is no good, but I feel very good. Why remember those annoying configurations? how good the dots are.

No problem, just click install:

After the installation is complete, take a look at the message: it's a domain.

All right, the domain is installed in this way, let's configure what we need next, create a new organization, and IT will create two new users aa and cc in it.

I have created a new user bb in users

We have established the information needed in the domain, the user password should be set up for permanent password, or the default setting should be set, and the password should be changed with the new user login. Because you want to log in for the first time by default to change your password, you can start with the most important open source conference management system mrbs

Preparation for MRBS installation before installation

Download the software first

Https://sourceforge.net/projects/mrbs/files/mrbs/ download address I use the latest 1.6.1

Look at the information update above, it was updated very soon in February this year, and it has been maintained. (foreigners have a good spirit. I like it.)

Find a linux my system's default yum source installation of centos7 is the latest software, install and turn off the firewall and selinux

# systemctl stopfirewalld centos7 turn off the firewall

Cat / etc/selinux/config

SELINUX=disabled # shuts down and modifies the configuration needs to be restarted. # setenforce 0 takes effect temporarily

Cat / etc/resolv.conf

Nameserver 192.168.61.132 # if the domain control specified in the configuration is Ip, you do not need to configure it. If it is a domain name, point to the domain control.

Direct Yum installation package system to connect to the network:

# yum install httpd mysql-server php php-mysqlmysql-devel php-ldap

# yum installmariadb mariadb-server

Systemctl restarthttpd Startup Service

# systemctl startmariadb start the service

# mysql_secure_installation sets the password database

Remember the password. I'll use it later.

[root@taotao2html] # rpm-qa | grep httpd

Httpd-tools-2.4.6-45.el7.centos.4.x86_64

Httpd-2.4.6-45.el7.centos.4.x86_64

[root@taotao2html] # rpm-qa | grep php

Php-mysql-5.4.16-42.el7.x86_64

Php-common-5.4.16-42.el7.x86_64

Php-pdo-5.4.16-42.el7.x86_64

Php-5.4.16-42.el7.x86_64

Php-cli-5.4.16-42.el7.x86_64

Php-ldap-5.4.16-42.el7.x86_64

[root@taotao2html] # rpm-qa | grep mariadb

Mariadb-5.5.52-1.el7.x86_64

Mariadb-server-5.5.52-1.el7.x86_64

Mariadb-libs-5.5.52-1.el7.x86_64

Mariadb-devel-5.5.52-1.el7.x86_64

There are software requirements on the official website:

PHP 5.3.3 + with MySQL 5.1 +

Preferably: PHP 5.3.3, Apache 2.4

The above is my software version.

Execute after installation:

# Cd / var/www/html

# Vim phpinfo.php

Save the contents above

Visit to see the environment:

Http://Ip/phpinfo.php

There must be a lap module, because we will use this to connect to the domain control server.

Officially begin the installation of our mrbs

Modify the configuration file:

Upload our package to / tmp

# cd / tmp

# tar xf tar xfmrbs-1.6.1.tar.gz

# cd mrbs-1.6.1/web

# vimconfig.inc.php

$timezone = "Europe/London"; revised to: $timezone = "Asia/Shanghai"; / / of course Shanghai is London?

$dbsys = "mysql"; / / Authentication type

$db_host = "localhost"; / / Database address

$db_database = "mrbs"; / / the library in the database

$db_login = "mrbs"; / / Connect the user

$db_password = 'mrbs'; / / password

$db_tbl_prefix = "mrbs_"; / / default table name format

Save exit

# mv / tmp/mrbs-1.6.1/web/*/var/www/html

Configuration of the database:

Mysql-u root-p log in to the database and execute the following command:

CREATE DATABASE mrbs DEFAULT CHARACTER SET utf8 COLLATEutf8_general_ci

Set up a database

Set access user and password

GRANT ALLPRIVILEGES ON mrbs.* TO 'mrbs'@'%' IDENTIFIED BY' mrbs' WITH GRANT OPTION

GRANT ALLPRIVILEGES ON mrbs.* TO 'mrbs'@'localhost' IDENTIFIED BY' mrbs' WITH GRANTOPTION

GRANT ALLPRIVILEGES ON mrbs.* TO 'mrbs'@'127.0.0.1' IDENTIFIED BY' mrbs' WITH GRANTOPTION

FLUSH PRIVILEGES;, refresh.

Import data (tables.my.sql is in the downloaded package directory)

Mysql-umrbs-pmrbsmrbs < tables.my.sql

Or mysql-u root-p mrbs < tables.my.sql

Warning: Using apassword on the command line interface can be insecure# ignores

Then restart the service and you don't have to start it:

Systemctl restarthttpd

Direct access address Ip:

Click on the user list to add a user who is an administrator

You can log in.

Look at the changes in the database:

At this point, the construction of the system is completed.

Mrbs combined with the configuration of domain control (the most important play lays the groundwork for this)

Wow, it took me a long time to get it out. I dare say the most detailed thing I've ever written:

Directly modify the configuration file config.inc.php file in your web program

# vim config.inc.php

$timezone = "Asia/Shanghai"

$dbsys = "mysql"

$db_host = "localhost"

$db_database = "mrbs"

$db_login = "mrbs"

$db_password = 'mrbs'

$db_tbl_prefix = "mrbs_"

$db_persist = FALSE

# the above are all the previous configurations. There is nothing to say. Look at the following:

$auth ["session"] = "php"; # here you can either php or cookie

$auth ["type"] = "ldap"; # Type must write Ldap, support pop3,mail,imap,db, etc.

$cookie_path_override='/'; # this can look at your url. If you visit your own Ip, write it this way. If there is a directory, write the name of the directory, such as "/ mrbs/".

$auth ["realm"] = "mrbs"

$auth ["admin"] [] = "bb"; # Administrator

$auth ["admin"] [] = "dd"; # Administrator

$auth ["admin"] [] = "aa"; more than # administrators just add it

$ldap_host= "192.168.61.132"; ip address of # AD

$ldap_port=389; # port, some people say that is not this, Microsoft has changed, rely on the bottom of Microsoft is the ldap service, the service port is unchanged.

$ldap_v3=true; # 3 version

$ldap_tls=false; # No encryption

$ldap_base_dn [] = "OU=IT,DC=wuyantao,DC=com"; # an organization can use

$ldap_base_dn [] = "cn=Users,DC=wuyantao,DC=com"; # can be used under another organization

$ldap_user_attrib= "cn"; # here is my biggest headache. I took care of it after 2 days. I didn't check it on the Internet. All you found was sAMAccountName. This only works on the previous version. Now the latest one is cn. I'm so glad I solved it. Wow.

$ldap_dn_serarch_attrib= "sAMAccountName"

$ldap_debug=true; # turn on bug mode you can see the message in the httpd error log.

$ladp_dn_search_dn= "CN=cc,OU=IT,DC=wuyantao,DC=com"; # query users to write full DN

$ldap_dn_search_password= "111...aaa"; the user's password above.

If you don't know the complete dn of the domain user, you can use the asdi editor to look at it. It is very clear:

Screenshot of my configuration: (in order that you don't make mistakes, I don't draw a frame on the picture, hee hee, because other people write mosaics. Shit, are you sharing? )

Log in to see the effect: I will log in to an ordinary user with an administrator:

It's finished here. Ha ha. I'm the one who laughs a lot in the Guardian of the Galaxy.

(Drax)

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.