rilpoint_mw113

LDAP - Domain Server

Line 1: Line 1:
==LDAP Installation and Configuration On BOSS==
==LDAP Installation and Configuration On BOSS==
-
==I    Introduction==
+
==Introduction==
BOSS Server contains the LDAP Server for Configuring the Linux Based Domain systems.
BOSS Server contains the LDAP Server for Configuring the Linux Based Domain systems.
The Lightweight Directory Access Protocol (LDAP) is an application protocol for accessing and maintaining distributed directory information services(database) over an Internet Protocol (IP) network.  LDAP is a lightweight protocol for accessing X.500 directory services through the TCP/IP protocol stack. LDAP port number is 389.
The Lightweight Directory Access Protocol (LDAP) is an application protocol for accessing and maintaining distributed directory information services(database) over an Internet Protocol (IP) network.  LDAP is a lightweight protocol for accessing X.500 directory services through the TCP/IP protocol stack. LDAP port number is 389.
Line 18: Line 18:
-
==II  Directory structure==
+
==Directory structure==
An LDAP database stores information on objects in a hierarchical manner. Objects have attributes that contain the information that is stored about the object. Objects also have classes that define which attributes must and may be stored on the object. Objects in an LDAP database are distinguished by their Distinguished Name (DN) which indicates their place in the hierarchical tree.  
An LDAP database stores information on objects in a hierarchical manner. Objects have attributes that contain the information that is stored about the object. Objects also have classes that define which attributes must and may be stored on the object. Objects in an LDAP database are distinguished by their Distinguished Name (DN) which indicates their place in the hierarchical tree.  
The protocol accesses LDAP directories are based on X.500 model
The protocol accesses LDAP directories are based on X.500 model
Line 42: Line 42:
"dn" is the distinguished name of the entry; it's neither an attribute nor a part of the entry. "cn=Ravi Shankar" is the entry's RDN (Relative Distinguished Name), and "dc=example,dc=com" is the DN of the parent entry, where "dc" denotes 'Domain Component'. The other lines show the attributes in the entry. Attribute names are typically mnemonic strings, like "cn" for common name, "dc" for domain component, "mail" for e-mail address and "sn" for surname. A server holds a subtree starting from a specific entry, e.g. "dc=example,dc=com" and its children.  
"dn" is the distinguished name of the entry; it's neither an attribute nor a part of the entry. "cn=Ravi Shankar" is the entry's RDN (Relative Distinguished Name), and "dc=example,dc=com" is the DN of the parent entry, where "dc" denotes 'Domain Component'. The other lines show the attributes in the entry. Attribute names are typically mnemonic strings, like "cn" for common name, "dc" for domain component, "mail" for e-mail address and "sn" for surname. A server holds a subtree starting from a specific entry, e.g. "dc=example,dc=com" and its children.  
-
==III  LDAP Server Configuration==
+
==LDAP Server Configuration==
The below detail shows the configuration details of the LDAP server
The below detail shows the configuration details of the LDAP server
Line 169: Line 169:
-
==2. Add New Directory to the Domain dc=cdacchennai,dc=in==
+
==Add New Directory to the Domain dc=cdacchennai,dc=in==
Create the file base.ldif
Create the file base.ldif
Line 329: Line 329:
-
==5. Deleting user or group in LDAP Directory==
+
==Deleting user or group in LDAP Directory==
ldapdelete -x -W -D 'cn=admin,dc=cdacchennai,dc=in'  "uid=user1, ou=people, dc=cdacchennai,dc=in"
ldapdelete -x -W -D 'cn=admin,dc=cdacchennai,dc=in'  "uid=user1, ou=people, dc=cdacchennai,dc=in"
Line 367: Line 367:
-
==1.  Configuring LDAP Client==
+
==Configuring LDAP Client==
Install the following packages
Install the following packages
Line 444: Line 444:
shutdown -r now
shutdown -r now
-
==2.  Login into the Client Machine==
+
==Login into the Client Machine==
Now login as a LDAP user which is available in the LDAP server in the login screen of the client machine.  
Now login as a LDAP user which is available in the LDAP server in the login screen of the client machine.  

Revision as of 06:58, 2 February 2012