Ldap Server: Difference between revisions
Jump to navigation
Jump to search
| Line 50: | Line 50: | ||
=== Change Database Suffix === | === Change Database Suffix === | ||
Use the following command | |||
<syntaxhighlight lang="bash">ldapmodify -Y EXTERNAL -H ldapi:///</syntaxhighlight> | <syntaxhighlight lang="bash">ldapmodify -Y EXTERNAL -H ldapi:///</syntaxhighlight> | ||
Then enter the following info | |||
<pre>dn: olcDatabase={1}mdb,cn=config | <pre>dn: olcDatabase={1}mdb,cn=config | ||
changetype: modify | changetype: modify | ||
| Line 56: | Line 59: | ||
olcSuffix: dc=objclt,dc=com | olcSuffix: dc=objclt,dc=com | ||
</pre> | </pre> | ||
Press enter twice | |||
=== Change Root DN === | === Change Root DN === | ||
Revision as of 01:57, 16 May 2016
Installation
Preparation
By default the installation of slapd will create a working configuration based on the hostname. If you want a suffix dc=objclt,dc=com then your host file "/etc/hosts" would have a line similar to this:
127.0.1.1 hostname.objclt.com hostname
Install
Install Ldap server and utilities
apt-get install slapd ldap-utils
Validate your install
Inquiry the Ldap configuration
ldapsearch -Q -LLL -Y EXTERNAL -H ldapi:/// -b cn=config dn
dn: cn=config
dn: cn=module{0},cn=config
dn: cn=schema,cn=config
dn: cn={0}core,cn=schema,cn=config
dn: cn={1}cosine,cn=schema,cn=config
dn: cn={2}nis,cn=schema,cn=config
dn: cn={3}inetorgperson,cn=schema,cn=config
dn: olcBackend={0}mdb,cn=config
dn: olcDatabase={-1}frontend,cn=config
dn: olcDatabase={0}config,cn=config
dn: olcDatabase={1}mdb,cn=config
Explanation of entries
- cn=config: global settings
- cn=module{0},cn=config: a dynamically loaded module
- cn=schema,cn=config: contains hard-coded system-level schema
- cn={0}core,cn=schema,cn=config: the hard-coded core schema
- cn={1}cosine,cn=schema,cn=config: the cosine schema
- cn={2}nis,cn=schema,cn=config: the nis schema
- cn={3}inetorgperson,cn=schema,cn=config: the inetorgperson schema
- olcBackend={0}hdb,cn=config: the 'hdb' backend storage type
- olcDatabase={-1}frontend,cn=config: frontend database, default settings for other databases
- olcDatabase={0}config,cn=config: slapd configuration database (cn=config)
- olcDatabase={1}hdb,cn=config: your database instance (dc=examle,dc=com)
Display the dc=objclt,dc=com DIT
ldapsearch -x -LLL -H ldap:/// -b dc=objclt,dc=com dn
Setup Ldap
Add a new Schema
Add Samba Schema
ldapadd -Q -Y EXTERNAL -H ldapi:/// -f samba.ldif
Change Database Suffix
Use the following command
ldapmodify -Y EXTERNAL -H ldapi:///
Then enter the following info
dn: olcDatabase={1}mdb,cn=config
changetype: modify
replace: olcSuffix
olcSuffix: dc=objclt,dc=com
Press enter twice
Change Root DN
Retreive current information
ldapsearch -LLL -Y EXTERNAL -H ldapi:/// -b cn=config dn olcRootDN
You need to modify the entry dn: "olcDatabase={1}hdb,cn=config"
Proceed to modify
ldapmodify -Y EXTERNAL -H ldapi:///
First, enter the entry we want to modify
dn: olcDatabase={1}mdb,cn=config
Second, type the parameter we want to modify
replace: olcRootDN
Third, type the new value you want
olcRootDN: cn=admin,dc=objclt,dc=com
Press enter twice to confirm
Backup / Restore
Backup
/usr/sbin/slapcat -l /mnt/Backup/Ldap/ldap_backup.ldif
Restore
Clean Backup File
cat ldap_backup.ldif | grep -v 'structuralObjectClass' | grep -v 'modifyTimestamp' | grep -v 'modifiersName' /
| grep -v 'entryCSN' | grep -v 'createTimestamp' | grep -v 'creatorsName' | grep -v 'entryUUID' > /backup/ldap/ldap_backup_clean.ldif
Restore from Ldif
ldapadd -x -D cn=admin,dc=objclt,dc=com -W -f /mnt/Backup/Ldap/ldap_backup_clean.ldif