Install LDAP-slapd.conf mode
\n——————start installation———————
\nQuery whether to install<\/p>\n
# rpm -qa openldap-servers<\/p>\n
Remove ldap
\n# yum remove openldap<\/p>\n
# yum remove openldap-servers<\/p>\n
Installation Environment
\nCentos7
\nApache\/2.4.6 (CentOS)
\nPHP 7.1.11<\/p>\n
Install LDAP Server<\/p>\n
Openldap-servers-2.4.44-5.el7.x86_64<\/p>\n
# yum install openldap-servers openldap-clients migrationtools<\/p>\n
# rpm -qa | grep openldap<\/p>\n
Delete all files in the slapd.d folder and copy a copy of slapd.conf
\n# rm -rvf \/etc\/openldap\/slapd.d
\n# mkdir \/etc\/openldap\/slapd.d<\/p>\n
Generate password<\/p>\n
# \/sbin\/slappasswd
\nNew password:
\nRe-enter new password:<\/p>\n
{SSHA}XXXXXXXXXXXXXXXXX….<\/p>\n
Ldap-server configuration file
\n# cp \/usr\/share\/openldap-servers\/slapd.ldif \/etc\/openldap\/slapd.conf<\/p>\n
Modify the slapd.conf file
\n# vi \/etc\/openldap\/slapd.conf<\/p>\n
Put<\/p>\n
olcAccess: to * by dn.base=”gidNumber=0+uidNumber=0,cn=peercred,cn=external,c n=auth” read by dn.base=”cn=Manager,dc=my-domain,dc= Com” read by * none
\nolcSuffix: dc=my-domain,dc=com olcRootDN: cn=Manager,dc=my-domain,dc=com<\/p>\n
Change to<\/p>\n
olcAccess: to * by dn.base=”gidNumber=0+uidNumber=0,cn=peercred,cn=external,c n=auth” read by dn.base=” cn=Manager,dc=rmohan,dc=com ” read by * none olcSuffix: dc=rmohan,dc=com
\nolcRootDN: cn=Manager,dc=rmohan,dc=com
\nolcRootPW: {SSHA}XXXXXXXXXXXXXXXXXXXXX<\/p>\n
(olcRootPW please copy from password.txt just)<\/p>\n
Start converting configuration files
\n# rm -rvf \/var\/lib\/ldap\/*
\n# \/usr\/libexec\/openldap\/convert-config.sh
\n# head -20 \/etc\/openldap\/slapd.d\/cn\\=config\/olcDatabase\\=\\{[12]}*<\/p>\n
Test if the LDAP configuration file is normal
\n# slaptest -u
\nConfig file testing succeeded<\/p>\n
Clear the database sample file and copy the database default profile
\nCopy database preset profile #
\nCp \/usr\/share\/openldap-servers\/DB_CONFIG.example \/var\/lib\/ldap\/DB_CONFIG<\/p>\n
# rm -rvf \/etc\/openldap\/certs
\n# mkdir \/etc\/openldap\/ certs<\/p>\n
Create a certs DB profile
\n# \/usr\/libexec\/openldap\/create-certdb.sh
\nCreating certificate database in ‘\/etc\/openldap\/certs’.
\n# \/usr\/libexec\/openldap\/generate-server-cert.sh
\nCreating new server certificate in ‘\/etc\/openldap\/certs’.
\n# chown ldap:ldap -R \/var\/lib\/ldap\/
\n# systemctl start slapd
\n# slaptest
\nConfig file testing succeeded
\n# systemctl enable slapd
\n# firewall-cmd –permanent –zone=public –add-port=389\/tcp
\n# firewall-cmd –reload
\n# ldapwhoami -WD cn=Manager,dc=rmohan,dc=com
\nEnter LDAP Password:
\nDn :cn=Mana g er,dc=rmohan,dc=com<\/p>\n
Import schema
\n# ldapadd -Y EXTERNAL -H ldapi:\/\/\/ -f \/etc\/openldap\/schema\/cosine.ldif
\n# ldapadd -Y EXTERNAL -H ldapi:\/\/\/ -f \/etc\/openldap\/schema\/nis.ldif
\n# ldapadd -Y EXTERNAL -H ldapi:\/\/\/ -f \/etc\/openldap\/schema\/inetorgperson.ldif<\/p>\n
Edit root node<\/p>\n
# vim base.ldif
\nDn: dc=rmohan,dc=com
\nobjectClass: top
\nobjectClass: dcObject
\nObjectclass: organization
\no: rmohan
\nDc: rmohan<\/p>\n
Dn: cn=Manager,dc=rmohan,dc=com
\nobjectClass: organizationalRole
\nCn: Manager
\nDescription: Directory Manager<\/p>\n
Dn: ou=STU, dc=rmohan,dc=com
\nobjectClass: organizationalUnit
\nOu: STU
\nDescription:student<\/p>\n
Dn: ou=TEA,dc=rmohan,dc=com
\nobjectClass: organizationalUnit
\nOu: TEA
\nDescription:teacher<\/p>\n
# \/bin\/ldapadd -x -D “cn=Manager,dc=rmohan,dc=com” -W -f base.ldif
\nEnter LDAP Password:
\nAdding new entry “dc=rmohan,dc=com”
\nAdding new entry “cn=Manager,dc=rmohan,dc=com”
\nAdding new entry “ou=People,dc=rmohan,dc=com”
\nAdding new entry “ou=Group,dc=rmohan,dc=com”<\/p>\n
Firewall settings<\/p>\n
# \/bin\/firewall-cmd –permanent –add-service=ldap
\n# \/bin\/firewall-cmd –reload<\/p>\n","protected":false},"excerpt":{"rendered":"
Install LDAP-slapd.conf mode ——————start installation——————— Query whether to install<\/p>\n
# rpm -qa openldap-servers<\/p>\n
Remove ldap # yum remove openldap<\/p>\n
# yum remove openldap-servers<\/p>\n
Installation Environment Centos7 Apache\/2.4.6 (CentOS) PHP 7.1.11<\/p>\n
Install LDAP Server<\/p>\n
Openldap-servers-2.4.44-5.el7.x86_64<\/p>\n
# yum install openldap-servers openldap-clients migrationtools<\/p>\n
# rpm -qa | grep openldap<\/p>\n
Delete all files in the slapd.d folder and copy […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[59],"tags":[],"_links":{"self":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/7659"}],"collection":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=7659"}],"version-history":[{"count":1,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/7659\/revisions"}],"predecessor-version":[{"id":7660,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/7659\/revisions\/7660"}],"wp:attachment":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=7659"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=7659"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=7659"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}