Config LDAP.
- Directory struct.
|-- bin(ldap tool)
| |-- ldapadd -> ldapmodify
| |-- ldapcompare
| |-- ldapdelete
| |-- ldapexop
| |-- ldapmodify
| |-- ldapmodrdn
| |-- ldappasswd
| |-- ldapsearch
| |-- ldapurl
| `-- ldapwhoami
|-- etc(config file)
| `-- openldap
|-- include
| |-- lber.h
| |-- lber_types.h
| |-- ldap_cdefs.h
| |-- ldap_features.h
| |-- ldap.h
| |-- ldap_schema.h
| |-- ldap_utf8.h
| |-- ldif.h
| `-- slapi-plugin.h
|-- LDIF(make by myself)
| |-- init.ldif
| `-- modify.ldif
|-- lib
| |-- liblber-2.4.so.2 -> liblber-2.4.so.2.8.4
| |-- liblber-2.4.so.2.8.4
| |-- liblber.a
| |-- liblber.la
| |-- liblber.so -> liblber-2.4.so.2.8.4
| |-- libldap-2.4.so.2 -> libldap-2.4.so.2.8.4
| |-- libldap-2.4.so.2.8.4
| |-- libldap.a
| |-- libldap.la
| |-- libldap_r-2.4.so.2 -> libldap_r-2.4.so.2.8.4
| |-- libldap_r-2.4.so.2.8.4
| |-- libldap_r.a
| |-- libldap_r.la
| |-- libldap_r.so -> libldap_r-2.4.so.2.8.4
| `-- libldap.so -> libldap-2.4.so.2.8.4
|-- libexec
| `-- slapd(start ldap)
|-- PHP_LDAP(Make by myself)
| |-- action.php
| |-- ldap.php
| `-- m_ldap.php
|-- sbin
| |-- killslap.sh (write to kill slapd)
| |-- slapacl -> ../libexec/slapd
| |-- slapadd -> ../libexec/slapd
| |-- slapauth -> ../libexec/slapd
| |-- slapcat -> ../libexec/slapd
| |-- slapdn -> ../libexec/slapd
| |-- slapindex -> ../libexec/slapd
| |-- slappasswd -> ../libexec/slapd
| |-- slapschema -> ../libexec/slapd
| `-- slaptest -> ../libexec/slapd
|-- share
| `-- man
`-- var
|-- openldap-data
|-- run
`-- weiwejiaLdap(make to store my ldap)
- The structure is clear now.
- Go into openldap/etc/openldap(structure like blow)
|-- ACL.conf(make by myself to contain ACL config)
|-- DB_CONFIG.example
|-- ldap.conf
|-- ldap.conf.default
|-- schema
|-- slapd.conf
|-- slapd.conf.bck
|-- slapd.conf.default
|-- slapd.ldif
`-- slapd.ldif.default
- First, you should vi slapd.conf
- include /usr/local/openldap/etc/openldap/schema/core.schema
include /usr/local/openldap/etc/openldap/schema/cosine.schema
include /usr/local/openldap/etc/openldap/schema/inetorgperson.schema (inetorgperson)
include /usr/local/openldap/etc/openldap/schema/nis.schema (posixaccount,posixgroup) All above is schema. - include /usr/local/openldap/etc/openldap/ACL.conf (ACL file)
- database bdb
suffix "dc=xxx,dc=org"
rootdn "cn=admin,dc=xxx,dc=org"
directory /usr/local/openldap/var/weiwejiaLdap (dir to contain the ldap)
OK, the dn of super root is "cn=admin,dc=xxx,dc=org" now. Password set as rootpw, Using slappasswd to generate.