ldap cn stuff

nooralain · 05-15-2012, 04:45 AM

i need to know how to make the DIT tree this way

here cn is a group
cn=users,dc=nooralain,dc=com

cn=admin,cn=users,dc=nooralain,dc=com this is the admin who is the root user

cn=boxiusers,cn=Users,dc=nooralain,dc=com

em31amit · 05-15-2012, 05:32 AM

create ldif file and add these attribute and include into ldap db using ldapadd command

you can follow something like this to set up a minimal LDAP DIT (Directory Information Tree).
Open temporary file:

Code:

# vi base.ldif

Insert the following. Once again the dn has to be changed to reflect your environment.

Code:

# Tree root
dn: dc=example,dc=com
objectClass: dcObject
objectclass: organization
o: example.com
dc: example
description: Tree root

# LDAP admin
dn: cn=admin,dc=example,dc=com
objectClass: simpleSecurityObject
objectClass: organizationalRole
cn: admin
userPassword: {SSHA}LDeTJEEBhqypKL2FpQuFc2j4Na1TLTRW
description: LDAP administrator

Apply the file:

Code:

# ldapadd -x -D cn=admin,dc=example,dc=com -W -f base.ldif

Validate LDAP DIT: Query your LDAP DIT : this time as anonymous user - hence no password is shown for your cn=admin,dc=example,dc=com):

Code:

# ldapsearch -xLLL -b dc=example,dc=com

Hope it helps. .

nooralain · 05-15-2012, 01:37 PM

Hey man i know how create that the basic setup is done

the root node

dc=nooralain,dc=com is there

i want to create something as i mentioned in the above
coz am not able to authenticate the software using ldap coz it has to be in that format

hope you reply with something that i can create the above metioned