As per the motivation in my previous post, I cleaned up slapd.d and various other files to start with a blank state on Fedora 17. Slapd would not start. It now needs slapd.d to exist.
Examining the installation script:
We can customize slapd.conf as follows for our needs:
More in next post.
Examining the installation script:
rpm -q --scripts openldap-serverswe notice that it creates fresh slapd.d at start as follows:
/usr/libexec/openldap/convert-config.shObviously, the script is smart enough to upgrade the existing files and database in case slapd is already running.
-f /usr/share/openldap-servers/slapd.ldif
We can customize slapd.conf as follows for our needs:
- Modify realm in olcAccess, olcSuffix and olcRootDN entries.
- Add an entry for olcRootPW - olcRootPW:"slappasswd output"
- Add needed schemas, e.g. cosine and nis as only core schema is included by default.
$ sudo /usr/libexec/openldap/convert-config.sh -f slapd.ldifI created base.ldif, users.ldif and groups.ldif using the migrationtools and added them to the ldap database:
$ sudo systemctl start slapd.service
$ ldapadd -x -W -D cn=Manager,dc=example,dc=com -f base.ldifIt should now be possible to use this server for authentication.
More in next post.
No comments:
Post a Comment