Organizational Unit Name (eg, section) :Ĭommon Name (eg, your name or your server's hostname) :
If you enter '.', the field will be left blank. There are quite a few fields but you can leave some blankįor some fields there will be a default value, What you are about to enter is what is called a Distinguished Name or a DN. You are about to be asked to enter information that will be incorporated Writing new private key to '/etc/openldap/certs/priv.pem' keyout /etc/openldap/certs/priv.pem -days 365 Generate a X509 certificate valid for 365 days: # openssl req -new -x509 -nodes -out /etc/openldap/certs/cert.pem \ Generate a LDAP password from a secret key (here redhat): # slappasswd -s redhat -n > /etc/openldap/passwd Install the following packages: # yum install -y openldap openldap-clients openldap-servers migrationtools Let’s assume that we use the domain and the hostname (this hostname should be resolved either by the /etc/hosts file or by DNS). It has been tested for RHEL 7.0, RHEL 7.1 and RHEL 7.2 (non-patched versions).ĭuring this tutorial, try to follow the instructions very precisely because LDAP syntax is sometimes cumbersome (case sensitive, space, etc) and prone to errors (dn/dc/cn). This tutorial doesn’t explain how to set up the Automounter and the NFS services. Instead of storing user accounts locally on each server, the LDAP directory stores them globally and makes them available to a group of servers. Here it is used to facilitate user account administration. It’s an open protocol for accessing and maintaining distributed directory information services over an IP network (source wikipedia). LDAP stands for Lightweight Directory Access Protocol.
0 kommentar(er)
