OpenLDAP安装配置文档.doc

OpenLDAP安装配置文档
配置OpenLDAP服务器
关闭防火墙或清空防火墙规则
安装
查看系统中已安装的LDAP相关的包
# rpm -qa | grep ldap
openldap--
nss_ldap-253-
nss_ldap-253-
openldap--
安装
# yum -y install openldap-devel openldap-servers openldap-clients nss_ldap
如果需要用ldap做一些高级应用,还需要加装如下套件:
     auth_ldap* : ldap for apache组件(用于web登陆ldap认证)
     nss_ldap*    ldap for nss and pam 组件(用于linux登陆ldap认证)
     php_ldap*  (用于php 作为ldap client与ldap server连接的API接口)
配置
安装完成一中的各个软件包后,系统中存在两个ldap的相关配置文件,分别是/etc/、/etc/openldap/
/etc/openldap/ 和/etc/openldap/

修改/etc/openldap/
目标使/etc/openldap/
include /etc/openldap/schema/
include /etc/openldap/schema/
include /etc/openldap/schema/
include /etc/openldap/schema/
include /etc/openldap/schema/
include /etc/openldap/schema/
include /etc/openldap/schema/
include /etc/openldap/schema/
include /etc/openldap/schema/
include /etc/openldap/schema/
allow bind_v2
pidfile /var/run/openldap/
argsfile /var/run/openldap/
database bdb
suffix "dc=ldaptest," suffix就是BaseDN
rootdn "dc=ldaptest,"
rootpw
directory /var/lib/ldap
index objectClass eq,pres
index ,mail,surnam