[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: slapd.ldif beginner

To: Sonny Taberman <sonny.taberman@lan-master.eu>
Subject: Re: slapd.ldif beginner
From: Dan White <dwhite@olp.net>
Date: Wed, 19 Feb 2014 13:07:24 -0600
Cc: openldap-technical@openldap.org
Content-disposition: inline
In-reply-to: <B2CF0C97-048F-4D45-8274-CB9EAF7ACD70@lan-master.eu>
References: <B2CF0C97-048F-4D45-8274-CB9EAF7ACD70@lan-master.eu>
User-agent: Mutt/1.5.21 (2010-09-15)

On 02/19/14 18:29 +0100, Sonny Taberman wrote:

Hi all ldap people.
I have been trying this new way of configuring a slapd server from scratch. Sorry to say total failure on my side. I'm not sure where to begin.
I have built a linux system from LFS Linux from scratch. So I want to install openldap from source, so far no problems.
When my installation is done i have a directory in /etc/ named openldap and the content inside is this:

DB_CONFIG.example
ldap.conf
ldap.conf.default
schema
slapd.conf
slapd.conf.default
slapd.ldif
slapd.ldif.default

To start configure my slapd using slapd.conf there is no problem. Actually I'm beginning to think I'm pretty good att this. :-)
But then I try to read all I can find about configure a new slapd using slapd.ldif, not that easy.
I understand that I need a new directory named slapd.d. After that I have no clue.
I guess something is hardcoded in slapd but what am I supposed to do next?
How can i communicate with slapd ? I guess I have to define a password somewhere for a manager or administrator but how and where?
Is there a tutorial somwhere ?
All I need is how to start. :-)


See slapd(8), slaptest(5), slapd-config(5), ldap.conf(5), and chapter 5 of
the OpenLDAP Software 2.4 Administrator's Guide.

In short:

mkdir <path/to>/slapd.d
chown user.group <path/to>/slapd.d
chmod ? <path/to>/slapd.d
# and assuming you want to bootstrap using a slapd.conf:
slaptest -f <path/to>slapd.conf -F <path/to>/slapd.d

Create an init script that starts slapd with appropriate options, e.g.:

/usr/sbin/slapd -h "ldap:/// ldapi:///" -g openldap -u openldap -F /etc/ldap/slapd.d

It is not recommended to modify files underneath <path/to>/slapd.conf with
a text editor, which you may be tempted to do. Use ldapadd/ldapmodify to
make modifications, or use slapcat -n0 to create a portable representation
of your config.

Search for documentation or discussion of SASL EXTERNAL authentication over
ldapi:/// (using olcAuthzRegexp), to perform administrator (rootDN)
changes.

--
Dan White

References:
- slapd.ldif beginner
  - From: Sonny Taberman <sonny.taberman@lan-master.eu>

Prev by Date: RE: Syncrepl and mmr
Next by Date: RE: Syncrepl and mmr
Index(es):
- Chronological
- Thread