hostname // to display the computer name
hostname <changed name> // to change
go to: /etc/sysconfig/network, add/modify HOSTNAME=NEWNAME to change permenately
dont forget to change /etc/hosts after you change your hostname,
127.0.0.1 localhost.localdomain localhost
// the following part mainly is from brightmoon 's blog:
http://blog.csdn.net/hitabc141592/article/details/22931179
// copy template
# cd /etc/openldap/
# cp /usr/share/openldap-servers/slapd.conf.obsolete slapd.conf
// create a passwd for ldap admin# slappasswd{SSHA}pfAJm+JJa4ec2y8GjTc8uMEJpoR5YKLy
a passwd like the above would be displayed, save/remember it for later use
// edit config file
# vim /etc/openldap/slapd.conf
database bdb
suffix "dc=centos,dc=com"
checkpoint 1024 15
rootdn "cn=admin,dc=centos,dc=com"
# Cleartext passwords, especially for the rootdn, should
# be avoided. See slappasswd(8) and slapd.conf(5) for details.
# Use of strong authentication encouraged.
# rootpw secret
# rootpw {crypt}ijFYNcSNctBYg
rootpw {SSHA}pfAJm+JJa4ec2y8GjTc8uMEJpoR5YKMn
//for rootdn, if your hostname is centos.com, and your current user is in admin group, it should be like this
rootdn "cn=admin,dc=centos,dc=com"
// copy db config file# cp /usr/share/openldap-servers/DB_CONFIG.example /var/lib/ldap/DB_CONFIG
// remove all file under /etc/openldap/slapd.d/* -- very very important!
// actually, I found the files are not deleted by using the following,
// when I navigate to /etc/openldap/slapd.d/ , I saw there are still file under this directory
// so I used rm -rf * under this directory
// when you delete all file under /etc/openldap/slapd.d/, make sure all file under this directory are deleted
// or you would always get "invalid credential" error# rm -rf /etc/openldap/slapd.d/*
// restart server and make slapd automaticall started by default# service slapd restart
# chkconfig slapd on
// grant access to ldap:ldap user# chown -R ldap:ldap /var/lib/ldap
# chown -R ldap:ldap /etc/openldap/
// test and generate config file under /etc/openldap/slapd.d , very important
// once this step is done, it should be displayed the message: config file testing succeeded,
slaptest -f /etc/openldap/slapd.conf -F /etc/openldap/slapd.d
// check /etc/openldap/slapd.d/cn=config to cat the file olcDatabase={2}bdb.ldif
// if it is correctly executed, you update in /etc/openldap/slapd.conf should be mapped as following:
// if it is not changed to map your update, there must be something wrong with your previous steps
// got check util you see the right update, or you would always got "credential errors"
olcSuffix: dc=centos,dc=com
olcAddContentAcl: FALSE
olcLastMod: TRUE
olcMaxDerefDepth: 15
olcReadOnly: FALSE
olcRootDN: cn=admin,dc=centos,dc=com
// grant ldap:ldap full access, others not
# chown -R ldap:ldap /etc/openldap/slapd.d
# service slapd restart
// use migrationtools to export all existing system accounts to ldif files# yum install migrationtools -y
# vi migrate_common.ph
...
# Default DNS domain
$DEFAULT_MAIL_DOMAIN = "centos.com";
# Default base
$DEFAULT_BASE ="dc=centos,dc=com";
# ./migrate_base.pl > /tmp/base.ldif
# ./migrate_passwd.pl /etc/passwd > /tmp/passwd.ldif
# ./migrate_group.pl /etc/group > /tmp/group.ldif
the password admin is the password set in slapd.conf file, "cn=admin,dc=centos,dc=com" is the rootdn # ldapadd -x -D "cn=admin,dc=centos,dc=com" -w admin -f /tmp/base.ldif
# ldapadd -x -D "cn=admin,dc=centos,dc=com" -w admin -f /tmp/passwd.ldif
# ldapadd -x -D "cn=admin,dc=centos,dc=com" -w admin -f /tmp/group.ldif
# service slapd restart
once you set up the configuration, the following comand can be used to fetch all the entries under the base dn:
ldapsearch -x -H ldap://centos.com -b 'dc=centos,dc=com'
ldap browser can be used
相关推荐
OpenLDAP文档.pptx
openldap-2.5.4
主讲OpenLdap安装及配置,OpenLdap是配置ldap的服务器。
openldap ,这个压缩包十分完整,带浏览器
openldap 开启TLS全步骤
包含了openldap的所有依赖 cyrus-sasl-2.1.26-23.el7.x86_64.rpm cyrus-sasl-lib-2.1.26-23.el7.x86_64.rpm cyrus-sasl-devel-2.1.26-23.el7.x86_64.rpm compat-openldap-2.3.43-5.el7.x86_64.rpm openldap-2.4.44...
附近为整理好的openldap工程,可以直接在VC9上编译openldap
集中式认证系统(CAS,jasig组织开发的)主要用于实现单点登录。该系统常常要求连到一个集中式管理用户...本文描述了cas如何配置才能连上OpenLDAP。假设你的OpenLDAP已正确安装。文中的dc,读者可视自己的情况进行替换。
OpenLdap2.4各版本,版本根据linux版本,有的Openldap与linux不兼容。 OpenLdap2.4各版本,版本根据linux版本,有的Openldap与linux不兼容。
OpenLDAP安装配置文档 配置OpenLDAP服务器 关闭防火墙或清空防火墙规则 一、 安装 二、 配置 三、 迁移密码和shadow信息 配置OpenLDAP客户端 OpenLDAP客户端sudo提权设定
openLDAP 管理员手册
db-4.7.25.tar.gz freetype-2.3.5.tar.gz ...openldap-2.4.38.tgz php-5.2.9.tar.gz phpldapadmin-0.9.8.5.tar.gz zlib-1.2.8.tar 包含上述安装包,都是源码包,通过编译安装,在CentOs5.0下运行通过
java代码操作linux上的openldap目录服务器,进行增删改查操作
OpenLdap 是一个开源的Ldap 服务实现, OpenLdap2.4 实现了RFC4533 规定的数据同步协议,不再使用老版本的slurpd推送方式来同步数据。OpenLdap 同步时,采用sLapd 派生的线程来进行同步操作。新的同步方式比老的方式...
openldap 2.4 user guide
openldap安装配置 java操作ldap
openldap 技术,轻量级目录访问协议。可做权限模型
OpenLDAP2.4管理员指南 OpenLDAP2.4管理员指南
openldap-2.3.43.tgz openldap-2.3.43.tgz
官方手册openldap-admini-guide,pdf阅读