LDAP Server Setup

Aus MHC-Wiki

Wechseln zu: Navigation, Suche

Folgendes include ich in der /etc/ldap/slapd.conf 

include         /etc/ldap/schema/core.schema
include         /etc/ldap/schema/cosine.schema
include         /etc/ldap/schema/inetorgperson.schema
include         /etc/ldap/schema/openldap.schema
include         /etc/ldap/schema/nis.schema
include         /etc/ldap/schema/misc.schema
#include        /etc/ldap/schema/krb5-kdc.schema
#include        /etc/ldap/schema/trust.schema 

#include                /etc/ldap/schema/dhcp.schema
#include                /etc/ldap/schema/dnszone.schema

include         /etc/ldap/schema/phpgroupware.schema

include         /etc/ldap/schema/samba3.schema
include         /etc/ldap/schema/pureftpd.schema
include         /etc/ldap/schema/gohard.schema
include         /etc/ldap/schema/goto.schema
include         /etc/ldap/schema/gosa+samba3.schema
include         /etc/ldap/schema/gofax.schema
include         /etc/ldap/schema/goserver.schema

access to attribute=userPassword,sambaNTPassword,sambaLMPassword
       by dn="cn=admin,dc=mhcsoftware,dc=de" write
       by anonymous auth
       by self write
       by * none

access to dn.base="" by * read

access to *
       by dn="cn=admin,dc=mhcsoftware,dc=de" write
       by * read


index           objectClass                             eq
index           uid                                     pres,eq
index           cn                                      pres,eq,sub,subany
index           mail                                    pres,eq
index           gosaMailDeliveryMode                    pres,eq,sub


Basis LDIF: 


version: 1

# LDIF Export von: dc=mhcsoftware,dc=de
# Erstellt von phpLDAPadmin ( http://phpldapadmin.sourceforge.net/ ) am March 13, 2005 11:57 pm
# Server: My LDAP Server (localhost)
# Suchbereich: sub
# Anzahl der Eintraege: 23

# Eintrag 1: dc=mhcsoftware,dc=de
dn:dc=mhcsoftware,dc=de
objectClass: top
objectClass: dcObject
objectClass: organization
o: Finori GmbH
dc: finori

# Eintrag 2: cn=admin,dc=mhcsoftware,dc=de
dn:cn=admin,dc=mhcsoftware,dc=de
objectClass: simpleSecurityObject
objectClass: organizationalRole
cn: admin
description: LDAP administrator
userPassword: {clear}password

# Eintrag 3: ou=Apps,dc=mhcsoftware,dc=de
dn:ou=Apps,dc=mhcsoftware,dc=de
objectClass: organizationalUnit
ou: Apps

# Eintrag 4: cn=gosa,ou=Apps,dc=mhcsoftware,dc=de
dn:cn=gosa,ou=Apps,dc=mhcsoftware,dc=de
objectClass: top
objectClass: applicationProcess
objectClass: simpleSecurityObject
userPassword: gosa
cn: gosa

# Eintrag 5: cn=smbpasswd,ou=Apps,dc=mhcsoftware,dc=de
dn:cn=smbpasswd,ou=Apps,dc=mhcsoftware,dc=de
objectClass: top
objectClass: applicationProcess
objectClass: simpleSecurityObject
cn: smbpasswd
userPassword: smbpasswd

# Eintrag 6: cn=cyrus,ou=Apps,dc=mhcsoftware,dc=de
dn:cn=cyrus,ou=Apps,dc=mhcsoftware,dc=de
objectClass: top
objectClass: applicationProcess
objectClass: simpleSecurityObject
cn: cyrus
userPassword: cyrus

# Eintrag 7: cn=saslauthd,ou=Apps,dc=mhcsoftware,dc=de
dn:cn=saslauthd,ou=Apps,dc=mhcsoftware,dc=de
objectClass: top
objectClass: applicationProcess
objectClass: simpleSecurityObject
cn: saslauthd
userPassword: saslauthd

# Eintrag 8: ou=People,dc=mhcsoftware,dc=de
dn:ou=People,dc=mhcsoftware,dc=de
objectClass: organizationalUnit
ou: People

# Eintrag 9: ou=Groups,dc=mhcsoftware,dc=de
dn:ou=Groups,dc=mhcsoftware,dc=de
objectClass: organizationalUnit
ou: Groups

# Eintrag 10: cn=administrator,ou=Groups,dc=mhcsoftware,dc=de
dn:cn=administrator,ou=Groups,dc=mhcsoftware,dc=de
gosaSubtreeACL: :all
objectClass: top
objectClass: posixGroup
objectClass: gosaObject
cn: administrator
gidNumber: 999
memberUid: admin

# Eintrag 11: ou=Computers,dc=mhcsoftware,dc=de
dn:ou=Computers,dc=mhcsoftware,dc=de
objectClass: organizationalUnit
ou: Computers

# Eintrag 12: uid=pdc$,ou=Computers,dc=mhcsoftware,dc=de
dn:uid=pdc$,ou=Computers,dc=mhcsoftware,dc=de
objectClass: top
objectClass: account
objectClass: goImapServer
objectClass: goCupsServer
objectClass: goFaxServer
objectClass: goLdapServer
objectClass: goNtpServer
objectClass: goFonServer
objectClass: goLogDBServer
objectClass: goNfsServer
objectClass: goSyslogServer
uid: pdc$
cn: localhost
goImapName: mail.finori.lan
goImapConnect: {localhost:143}
goImapAdmin: cyrus
goImapSieveServer: localhost
goImapSievePort: 2000
goImapPassword: cyrus
goFaxAdmin: root
goFaxPassword: passwort
goFonAdmin: root
goFonAreaCode: 0
goFonCountryCode: 49
goFonPassword: passwort
goLogAdmin: root
goLogPassword: passwort
goLdapBase: dc=mhcsoftware,dc=de

# Eintrag 13: dc=branch,dc=mhcsoftware,dc=de
dn:dc=branch,dc=mhcsoftware,dc=de
objectClass: top
objectClass: dcObject
objectClass: organizationalUnit
objectClass: gosaDepartment
dc: branch
ou: branch
description: Remote branch

# Eintrag 14: ou=Addressbook,dc=mhcsoftware,dc=de
dn:ou=Addressbook,dc=mhcsoftware,dc=de
objectClass: organizationalUnit
ou: Addressbook

# Eintrag 15: ou=Systems,dc=mhcsoftware,dc=de
dn:ou=Systems,dc=mhcsoftware,dc=de
objectClass: organizationalUnit
ou: Systems 

# Eintrag 16: ou=configs,ou=systems,dc=mhcsoftware,dc=de
dn:ou=configs,ou=systems,dc=mhcsoftware,dc=de
objectClass: organizationalUnit
ou: configs

# Eintrag 17: ou=gosa,ou=configs,ou=systems,dc=mhcsoftware,dc=de
dn:ou=gosa,ou=configs,ou=systems,dc=mhcsoftware,dc=de
objectClass: organizationalUnit
ou: gosa

# Eintrag 18: ou=Idmap,dc=mhcsoftware,dc=de
dn:ou=Idmap,dc=mhcsoftware,dc=de
objectClass: organizationalUnit
ou: Idmap

# Eintrag 19: sambaDomainName=MHC,dc=mhcsoftware,dc=de
dn:sambaDomainName=MHC,dc=mhcsoftware,dc=de
objectClass: sambaDomain
objectClass: sambaUnixIdPool
sambaDomainName: MHC
sambaSID: S-1-5-21-1111111111-1111111111-1111111111
uidNumber: 1000
gidNumber: 1000
sambaAlgorithmicRidBase: 1000

# Eintrag 20: uid=admin,ou=People,dc=mhcsoftware,dc=de
dn:uid=admin,ou=People,dc=mhcsoftware,dc=de
givenName: Admin
sn: System
cn: Admin System
userPassword: {clear}passwort
shadowFlag: 0
objectClass: posixAccount
objectClass: shadowAccount
objectClass: top
objectClass: person
objectClass: inetOrgPerson
objectClass: gosaAccount
homeDirectory: /root
loginShell: /bin/bash
uidNumber: 1000
gidNumber: 999
shadowLastChange: 12855
gosaDefaultPrinter: pdf
gosaDefaultLanguage: de_DE
uid: admin

# Eintrag 21: uid=root,ou=people,dc=mhcsoftware,dc=de
dn:uid=root,ou=people,dc=mhcsoftware,dc=de
sn: root
givenName: root
cn: root root
homeDirectory: /root
loginShell: unconfigured
gosaDefaultPrinter: raw
gosaDefaultLanguage: de_DE
uid: root
objectClass: posixAccount
objectClass: shadowAccount
objectClass: top
objectClass: person
objectClass: organizationalPerson
objectClass: inetOrgPerson
objectClass: gosaAccount
userPassword: {clear}passwort
shadowLastChange: 12855
sambaLMPassword: XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
sambaNTPassword: XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
sambaPwdLastSet: 1110754138
gidNumber: 1
uidNumber: 1

# Eintrag 22: cn=pam,ou=Apps,dc=mhcsoftware,dc=de
dn:cn=pam,ou=Apps,dc=mhcsoftware,dc=de
cn: pam
userPassword: pam
objectClass: applicationProcess
objectClass: simpleSecurityObject
objectClass: top  

# Eintrag 23: cn=nss,ou=Apps,dc=mhcsoftware,dc=de
dn:cn=nss,ou=Apps,dc=mhcsoftware,dc=de
cn: nss
userPassword: nss
objectClass: applicationProcess
objectClass: simpleSecurityObject
objectClass: top
Von „http://wiki.mhcsoftware.de/LDAP_Server_Setup
Persönliche Werkzeuge
Navigation