Differences between revisions 8 and 9
Revision 8 as of 2005-01-03 09:55:01
Size: 5381
Editor: anonymous
Comment:
Revision 9 as of 2005-01-03 09:56:15
Size: 1036
Editor: anonymous
Comment:
Deletions are marked like this. Additions are marked like this.
Line 2: Line 2:
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3c.org/TR/1999/REC-html401-19991224/loose.dtd">
<!-- saved from url=(0046)http://wiki.debian.net/index.cgi?["OpenLDAPSetup"] -->
<HTML xmlns="http://www.w3.org/1999/xhtml"><HEAD><TITLE>DebianWiki: ["OpenLDAPSetup"]</TITLE>
<META http-equiv=Content-Type content="text/html; charset=ISO-8859-1"><LINK
href="DebianWiki ["OpenLDAPSetup"]_bestanden/Kwiki.css" type=text/css
rel=stylesheet><LINK href="DebianWiki ["OpenLDAPSetup"]_bestanden/Display.css"
type=text/css rel=stylesheet><LINK href="" rel="shortcut icon"><LINK title=Home
href="index.cgi" rel=start><LINK title=RSS
href="index.cgi?action=plugin;plugin_name=RSS" type=text/xml rel=alternate><!-- <script src="javascript/Display.js"></script> -->
<META content="MSHTML 6.00.2900.2523" name=GENERATOR></HEAD>
<BODY>
<DIV id=banner><IMG title="Debian News and Information" style="FLOAT: right"
alt="" src="DebianWiki ["OpenLDAPSetup"]_bestanden/officiallogo-50.jpg">
<H1>DebianWiki</H1><SPAN class=description>Debian News and Information</SPAN>
<SPAN style="DISPLAY: none"><A
href="http://wiki.debian.net/index.cgi?["OpenLDAPSetup"]#skip-upper-nav">&gt;&gt;</A></SPAN>
</DIV><!-- sister_html not available yet -->
<DIV id=content>
<DIV class=blog>
<DIV class=blogbody><A id=entry></A>
<H2 class=title><A
href="http://wiki.debian.net/index.cgi?action=search&amp;search=["OpenLDAPSetup"]">["OpenLDAPSetup"]</A></H2>
<DIV class=upper-nav><A accessKey=1
href="http://wiki.debian.net/index.cgi?FrontPage">FrontPage</A> || <A
href="http://wiki.debian.net/blog.cgi">News</A> || <A
href="http://wiki.debian.net/index.cgi?RecentChanges">RecentChanges</A> || <A
href="http://wiki.debian.net/index.cgi?action=prefs">Preferences</A> ||
<FORM style="DISPLAY: inline" action=index.cgi method=post><INPUT
onfocus="this.value=''" size=15 value=Search name=search> <INPUT type=hidden
value=search name=action> </FORM>
<DIV align=right><SMALL><EM>Even though this is UNIX, there is nothing stopping
one from using readable names. -- tfheen </EM><A
href="http://wiki.debian.net/index.cgi?AnnoyingQuote">#</A></SMALL> </DIV></DIV><!-- close "upper-nav" --><A id=skip-upper-nav></A>
<HR>
Configuring LDAP Authentication for Debian
["OpenLDAPSetup"]
Line 37: Line 5:
<DIV class=wiki>
<H1>Configuring LDAP Authentication for Debian</H1>
<H2>["OpenLDAPSetup"]</H2>
<P>1. Install the <A
href="http://wiki.debian.net/index.cgi?["OpenLDAP"]">["OpenLDAP"]</A> package <A
href="http://packages.debian.org/cgi-bin/search_packages.pl?searchon=names&amp;keywords=slapd">slapd</A>
</P>
<P>Do '<TT>apt-get install slapd</TT>', answering prompts as required and
generaly picking defaults except where they are obviously examples. </P>
<P>2. Edit the LDAP configuration file </P>
<P>To make using LDAP utilities like '<TT>ldapsearch</TT>' a little less
painful, edit <TT>/etc/ldap/ldap.conf</TT> (installed by the '<TT>libldap2</TT>'
package on the stable (a.k.a. 'woody') distribution) to set: </P>
<BLOCKQUOTE><PRE>BASE dc=&lt;yourhost&gt;,dc=&lt;your&gt;,dc=&lt;domain&gt;
1. Install the ["OpenLDAP"] package slapd

Do 'apt-get install slapd', answering prompts as required and generaly picking defaults except where they are obviously examples.

2. Edit the LDAP configuration file

To make using LDAP utilities like 'ldapsearch' a little less painful, edit /etc/ldap/ldap.conf (installed by the 'libldap2' package on the stable (a.k.a. 'woody') distribution) to set:

BASE dc=<yourhost>,dc=<your>,dc=<domain>
Line 53: Line 16:
</PRE></BLOCKQUOTE>
<P>
3. Tune your LDAP server performance </P>
<P>
To improve LDAP performance, edit <TT>/etc/ldap/slapd.conf</TT> to set more
indexes than the stable (a.k.a. 'woody') default of just objectClass (taken from
the Mandrake documentation): </P>
<BLOCKQUOTE><PRE>
index objectclass,uid,uidNumber,gidNumber eq

3. Tune your LDAP server performance

To improve LDAP performance, edit /etc/ldap/slapd.conf to set more indexes than the stable (a.k.a. 'woody') default of just objectClass (taken from the Mandrake documentation):

index objectclass,uid,uidNumber,gidNumber eq
Line 61: Line 24:
</PRE></BLOCKQUOTE>
<P>4. Update the LDAP indexes </P>
<P>Make sure the indexes are updated by doing (as <TT>root</TT>): </P>
<BLOCKQUOTE><PRE># /etc/init.d/slapd stop

4. Update the LDAP indexes

Make sure the indexes are updated by doing (as root):

# /etc/init.d/slapd stop
Line 67: Line 32:
</PRE></BLOCKQUOTE>
<HR>

<UL>{{{
  <LI><A
  href="http://wiki.debian.net/index.cgi?["LDAPAuthentication"]">["LDAPAuthentication"]</A>
  </LI></UL></DIV>
}}}
<HR>

<FORM class=edit><INPUT type=submit value=EDIT name=button-edit> <INPUT
type=hidden value=edit name=action> <INPUT type=hidden value=["OpenLDAPSetup"]
name=page_id> </FORM></DIV><!-- close "blogbody" -->
<DIV class=comments-head></DIV><!-- close "comments-head" -->
<DIV class=comments-body><BR><A
id=diff></A></DIV><!-- close "comments-body" --></DIV><!-- close "blog" --></DIV><!-- close "content" -->
<DIV id=links>
<DIV class=sidetitle>Search </DIV><!-- close "sidetitle" -->
<DIV class=side>
<FORM action=index.cgi method=post><INPUT onfocus="this.value=''" size=15
value=Search name=search> <INPUT type=hidden value=search name=action>
</FORM></DIV><!-- close "side" -->
<DIV class=sidetitle>Import </DIV><!-- close "sidetitle" -->
<DIV class=side>
<FORM action=index.cgi method=post><INPUT onfocus="this.value=''" size=15
value=Import name=import> <INPUT type=hidden value=import name=action>
</FORM></DIV><!-- close "side" -->
<DIV class=sidetitle>KwikiNavigation </DIV><!-- close "sidetitle" -->
<DIV class=side><SPAN><A accessKey=1
href="http://wiki.debian.net/index.cgi?FrontPage">FrontPage</A></SPAN> <SPAN><A
href="http://wiki.debian.net/blog.cgi">News</A></SPAN> <SPAN><A
href="http://wiki.debian.net/index.cgi?RecentChanges">RecentChanges</A></SPAN>
<SPAN><A
href="http://wiki.debian.net/index.cgi?action=prefs">Preferences</A></SPAN>
</DIV><!-- close "side" -->
<DIV class=powered>Powered by:<BR><A href="http://kwiki.org/">Kwiki 0.18</A>
</DIV><!-- close "powered" --></DIV><!-- close "links" --></BODY></HTML>

Configuring LDAP Authentication for Debian ["OpenLDAPSetup"]

1. Install the ["OpenLDAP"] package slapd

Do 'apt-get install slapd', answering prompts as required and generaly picking defaults except where they are obviously examples.

2. Edit the LDAP configuration file

To make using LDAP utilities like 'ldapsearch' a little less painful, edit /etc/ldap/ldap.conf (installed by the 'libldap2' package on the stable (a.k.a. 'woody') distribution) to set:

BASE dc=<yourhost>,dc=<your>,dc=<domain> URI ldap://localhost

3. Tune your LDAP server performance

To improve LDAP performance, edit /etc/ldap/slapd.conf to set more indexes than the stable (a.k.a. 'woody') default of just objectClass (taken from the Mandrake documentation):

index objectclass,uid,uidNumber,gidNumber eq index cn,mail,surname,givenName eq,subinitial

4. Update the LDAP indexes

Make sure the indexes are updated by doing (as root):

# /etc/init.d/slapd stop # slapindex # /etc/init.d/slapd start