Configuring LDAP Authentication for Debian ["OpenLDAPSetup"]

1. Install the ["OpenLDAP"] package slapd

Do 'apt-get install slapd', answering prompts as required and generaly picking defaults except where they are obviously examples.

2. Edit the LDAP configuration file

To make using LDAP utilities like 'ldapsearch' a little less painful, edit /etc/ldap/ldap.conf (installed by the 'libldap2' package on the stable (a.k.a. 'woody') distribution) to set:

BASE dc=<yourhost>,dc=<your>,dc=<domain> URI ldap://localhost

3. Tune your LDAP server performance

To improve LDAP performance, edit /etc/ldap/slapd.conf to set more indexes than the stable (a.k.a. 'woody') default of just objectClass (taken from the Mandrake documentation):

index objectclass,uid,uidNumber,gidNumber eq index cn,mail,surname,givenName eq,subinitial

4. Update the LDAP indexes

Make sure the indexes are updated by doing (as root):

# /etc/init.d/slapd stop # slapindex # /etc/init.d/slapd start