Debian 10 Buster
Sponsored Link

OpenLDAP : Configure LDAP Server2019/07/26

 
Configure LDAP Server in order to share users' accounts in your local networks.
[1] Install OpenLDAP.
root@dlp:~#
apt -y install slapd ldap-utils
# set LDAP admin password during installation like follows

 +--------------------------| Configuring slapd |-------------------------+
 | Please enter the password for the admin entry in your LDAP directory.  |
 |                                                                        |
 | Administrator password:                                                |
 |                                                                        |
 | ********______________________________________________________________ |
 |                                                                        |
 |                                 <Ok>                                   |
 |                                                                        |
 +------------------------------------------------------------------------+

# confirm settings

root@dlp:~#
slapcat

dn: dc=srv,dc=world
objectClass: top
objectClass: dcObject
objectClass: organization
o: srv.world
dc: srv
structuralObjectClass: organization
entryUUID: 08b3ae24-42fa-1039-8da0-ef6bf22a19f7
creatorsName: cn=admin,dc=srv,dc=world
createTimestamp: 20190725073200Z
entryCSN: 20190725073200.275709Z#000000#000#000000
modifiersName: cn=admin,dc=srv,dc=world
modifyTimestamp: 20190725073200Z

dn: cn=admin,dc=srv,dc=world
objectClass: simpleSecurityObject
objectClass: organizationalRole
cn: admin
description: LDAP administrator
userPassword:: e1NTSEF9RG5yMWY1VGFnemc1WUlPMDJOQzY3dC9zbHVYZXhTZFo=
structuralObjectClass: organizationalRole
entryUUID: 08b9c85e-42fa-1039-8da1-ef6bf22a19f7
creatorsName: cn=admin,dc=srv,dc=world
createTimestamp: 20190725073200Z
entryCSN: 20190725073200.315769Z#000000#000#000000
modifiersName: cn=admin,dc=srv,dc=world
modifyTimestamp: 20190725073200Z
[2] Add base dn for Users and Groups.
root@dlp:~#
vi base.ldif
# create new

# change to your own suffix for the field [dc=srv,dc=world]

dn: ou=people,dc=srv,dc=world
objectClass: organizationalUnit
ou: people

dn: ou=groups,dc=srv,dc=world
objectClass: organizationalUnit
ou: groups 

root@dlp:~#
ldapadd -x -D cn=admin,dc=srv,dc=world -W -f base.ldif

Enter LDAP Password:    
# LDAP admin password (set in installation of openldap)

adding new entry "ou=people,dc=srv,dc=world"

adding new entry "ou=groups,dc=srv,dc=world"
Matched Content