Ubuntu Server Guide
Note Adjust for your server name and directory suffix Post-install Inspection
Download 1.23 Mb. Pdf ko'rish
|
ubuntu-server-guide (1)
|
Note
Adjust for your server name and directory suffix Post-install Inspection The packaging of slapd is designed to be configured within the service itself by dedicating a separate DIT for that purpose. This allows one to dynamically configure slapd without the need to restart the service or 189 edit config files. This configuration database consists of a collection of text-based LDIF files located under /etc/ldap/slapd.d, but these should never be edited directly. This way of working is known by several names: the slapd-config method, the RTC method (Real Time Configuration), or the cn=config method. You can still use the traditional flat-file method (slapd.conf ) but it’s not going to be covered in this guide. Right after installation, you will get two databases, or suffixes: one for your data, based on your host’s domain (dc=example,dc=com), and one for your configuration, with its root at cn=config. To change the data on each we need different credentials and access methods: • dc=example,dc=com: the administrative user for this suffix is cn=admin,dc=example,dc=com and its password is the one selected during the installation of the slapd package • cn=config: the configuration slapd itself is stored under this suffix. Changes to it can be made by the special DN gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth. This is how the local sys- tem’s root user (uid=0/gid=0) is seen by the directory when using SASL EXTERNAL authentication through the ldapi:/// transport via the /run/slapd/ldapi unix socket. Essentially what this means is that only the local root user can update the cn=config database. More details later. • This is what the slapd-config DIT looks like via the LDAP protocol (listing only the dns): $ sudo l d a p s e a r c h −Q −LLL −Y EXTERNAL −H l d a p i : / / / −b cn=c o n f i g dn dn : cn=c o n f i g dn : cn=module { 0 } , cn=c o n f i g dn : cn=schema , cn=c o n f i g dn : cn={0} c o r e , cn=schema , cn=c o n f i g dn : cn={1} c o s i n e , cn=schema , cn=c o n f i g dn : cn={2} n i s , cn=schema , cn=c o n f i g dn : cn={3} i n e t o r g p e r s o n , cn=schema , cn=c o n f i g dn : o l c D a t a b a s e ={−1} f r o n t e n d , cn=c o n f i g dn : o l c D a t a b a s e ={0} c o n f i g , cn=c o n f i g dn : o l c D a t a b a s e ={1}mdb , cn=c o n f i g Explanation of entries: Download 1.23 Mb. Do'stlaringiz bilan baham: 
|