ldap服务器搭建

1、linux 环境参考：

通过运行 lsb_release -a

LSB Version:    :core-4.0-amd64:core-4.0-noarch:graphics-4.0-amd64:graphics-4.0-noarch:printing-4.0-amd64:printing-4.0-noarchDistributor ID: RedHatEnterpriseServerDescription:    Red Hat Enterprise Linux Server release 6.3 (Santiago)Release:        6.3Codename:       Santiago

2、安装openldap

yum install openldap openldap-* -y  

3、配置ldap，包括准备DB_CONFIG和slapd.conf

cp /usr/share/openldap-servers/DB_CONFIG.example /var/lib/ldap/DB_CONFIG  cp /usr/share/openldap-servers/slapd.conf.obsolete /etc/openldap/slapd.conf

4、生成ldap管理员密码

slappasswd -s ldap

5、修改slapd.conf，主要配置dc和rootpw，rootpw配置为上述步骤中的密码

6、检测并重新生成ldap数据库

chown -R ldap.ldap /var/lib/ldap//etc/init.d/slapd restartslaptest -f /etc/openldap/slapd.confrm -rf /etc/openldap/slapd.d/*slaptest -f /etc/openldap/slapd.conf -F /etc/openldap/slapd.d/cat /etc/openldap/slapd.d/cn\=config/olcDatabase\=\{2\}bdb.ldif

7、授权：chown -R ldap.ldap /etc/openldap/slapd.d/
重启：/etc/init.d/slapd restart

8、yum安装migrationtools

yum install migrationtools -y

9、编辑/usr/share/migrationtools/migrate_common.ph并修改相关配置

Default DNS domain  $DEFAULT_MAIL_DOMAIN = "sohu.com";  # Default base  $DEFAULT_BASE = "dc=sohu,dc=com"; 

10、生成base.ldif 并添加到ldap

/usr/share/migrationtools/migrate_base.pl >base.ldifldapadd -x -D "cn=Superset,dc=sohu,dc=com" -W -f ./base.ldif  

11、yum安装httpd及PhpLdapAdmin

yum install httpd phpldapadmin -y

12、配置/etc/httpd/conf.d/phpldapadmin.conf允许从远程访问

Alias /phpldapadmin /usr/share/phpldapadmin/htdocs  Alias /ldapadmin /usr/share/phpldapadmin/htdocs  <Directory /usr/share/phpldapadmin/htdocs>    Order Deny,Allow    Allow from all  </Directory>

13、修改/etc/phpldapadmin/config.php配置用DN登录

// $servers->setValue('login','attr','uid');

14、启动httpd服务

service httpd start

15、打开web  http://ip/ldapadmin