openldap

neocontrol · 02-16-2008, 08:25 AM

I'm using this guide --> http://www.linuxhomenetworking.com/w...DAP_and_RADIUS

I'm in the early stages here, and I'm modding my slapd.conf file. It says to add this to your conf file....

Code:

database        bdb
suffix          "dc=example,dc=com"
rootdn          "cn=Manager,dc=example,dc=com"
rootpw          {SSHA}v4qLq/qy01w9my60LLX9BvfNUrRhOjQZ
directory       /var/lib/ldap/example.com

Assuming I'm installing this on a machine that is located at freddy.domain1.com. Would my config look like this?

Code:

database        bdb
suffix          "dc=freddy,dc=domain1,dc=com"
rootdn          "cn=Manager,dc=freddy,dc=domain1,dc=com"
rootpw          {SSHA};lasd9320jf30j30j03j09jf0jf0jf340jfio34
directory       /var/lib/ldap/domain1.com

Or do I just use the very last part of the domain?

Also, should this be a name that is in my dns, or should it be more like domain1.local?

Thanks for any help.

frndrfoe · 02-16-2008, 11:14 AM

If your building it on a machine with the name freddy there is no need to include that hostname.
Try

Code:

database        bdb
suffix          "dc=domain1,dc=com"
rootdn          "cn=Manager,dc=domain1,dc=com"
rootpw          {SSHA};lasd9320jf30j30j03j09jf0jf0jf340jfio34
directory       /var/lib/ldap/domain1.com

The you can add users in cn=People,dc=domain1,dc=com.
They will be organized like:
uid=username,cn=People,dc=domain1,dc=com

You want the suffix to reflect the domain, not the host serving it because that could always change in the future.