LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Other *NIX Forums > Solaris / OpenSolaris
User Name
Password
Solaris / OpenSolaris This forum is for the discussion of Solaris, OpenSolaris, OpenIndiana, and illumos.
General Sun, SunOS and Sparc related questions also go here. Any Solaris fork or distribution is welcome.

Notices


Reply
  Search this Thread
Old 02-04-2011, 01:41 AM   #1
kashifazizawan
Member
 
Registered: Aug 2008
Location: Dubai, UAE
Distribution: CentOS
Posts: 40
Blog Entries: 13

Rep: Reputation: 15
Question How to configure OpenLDAP in solaris9


How to configure OpenLDAP in solaris9


I want to create solaris9 domain server client network with openldap authentication..
i installed openldap package from
>pkg-get -u openldap

file paths
/opt/csw/etc/openldap/slapd.conf
/opt/csw/etc/openldap/ldap.conf
/opt/csw/sbin/slaptest

cat /opt/csw/etc/openldap/slapd.conf
include /opt/csw/etc/openldap/schema/core.schema
include /opt/csw/etc/openldap/schema/cosine.schema
include /opt/csw/etc/openldap/schema/inetorgperson.schema
include /opt/csw/etc/openldap/schema/solaris.schema
include /opt/csw/etc/openldap/schema/nis.schema
include /opt/csw/etc/openldap/schema/solaris-nis.schema
#include /usr/local/etc/openldap/schema/DUAConfigProfile.sch ema
## solaris.schema provides nisDomainObject, which is absent from nis.schema
# example will NOT work:
# allow bind_v2
# allow bind_anon_dn
# The second entry (bind_anon_dn) overrides the first
# one (bind_v2) since they are in separate lines.
# The line below WILL work.
allow bind_v2 bind_anon_dn
# ACL directives
access to attrs=123456
by self write
by * auth
access to dn.base=""
by * read
access to dn.base="cn=Subschema" by * read
# Change ?anonymous auth? to ?anonymous read? or ?anonymous none? depending on your need
access to dn.subtree="ou=People,dc=test,dc=test"
by self write
by dn="cn=proxyagent,ou=profile,dc=test,dc=test& quot; read
by users read
by anonymous auth
access to *
by self write
by * read
# DB directives
database bdb
suffix "dc=test,dc=test"
rootdn "cn=Manager,dc=test,dc=test"
rootpw 123456
#rootpw {MD5}Xr4ilOzQ4PCOq3aQ0qbuaQ==
directory /opt/csw/var/openldap-data/
index objectClass,uid,uidNumber,gidNumber,ou eq
index cn,mail,surname,givenname eq,subinitial
#index memberUid eq
#index nisDomain eq
#index uniqueMember pres
# Performance tuning directives
sizelimit 5000
threads 8
idletimeout 14400
cachesize 10000
checkpoint 256 15
TLSCipherSuite HIGH:MEDIUM:+TLSv1:+SSLv2:+SSLv3
TLSCACertificateFile /usr/local/etc/openldap/cacert.pem
TLSCertificateFile /usr/local/etc/openldap/slapd-cert-ldap1.pem
TLSCertificateKeyFile /usr/local/etc/openldap/slapd-key-ldap1.pem
# Use the following if client authentication is required
#TLSVerifyClient demand
# ... or not desired at all
#TLSVerifyClient never
password-hash 123456
 
Old 02-15-2011, 02:24 AM   #2
EricTRA
LQ Guru
 
Registered: May 2009
Location: Gibraltar, Gibraltar
Distribution: Fedora 20 with Awesome WM
Posts: 6,805
Blog Entries: 1

Rep: Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295
Hello,

Is this a question or a howto you're sharing? If it's the latter, then thanks for sharing If it's the first, have a look at Google, it comes up with step by step guides like this one.

Kind regards,

Eric
 
Old 02-15-2011, 04:39 AM   #3
kashifazizawan
Member
 
Registered: Aug 2008
Location: Dubai, UAE
Distribution: CentOS
Posts: 40
Blog Entries: 13

Original Poster
Rep: Reputation: 15
Question

this is a question/ not a how-to...
i see the link you mention above.
thnx for:

but dont want to build and install, i need conf files editing etc...
 
Old 02-15-2011, 04:52 AM   #4
EricTRA
LQ Guru
 
Registered: May 2009
Location: Gibraltar, Gibraltar
Distribution: Fedora 20 with Awesome WM
Posts: 6,805
Blog Entries: 1

Rep: Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295
Hello,

If you have a good look at the site I pointed to, you'll see that all the configuration files and scripts used are listed with their contents, ready for you to copy/paste and edit according to your needs.

Kind regards,

Eric
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
configure openldap automatically kzcom Linux - Server 1 10-31-2010 09:13 PM
openldap ACL configure no restriction Niceman2005 Linux - Software 0 04-13-2009 01:40 AM
./configure for openLDAP fails..... rayj00 Linux - Software 2 10-01-2006 05:11 PM
How to set up and configure OpenRADIUS and OpenLDAP? bkitduy Linux - Newbie 0 09-27-2006 05:57 AM
unable to configure openldap 2.1.16 fddi1 Linux - Software 8 07-10-2003 12:49 PM

LinuxQuestions.org > Forums > Other *NIX Forums > Solaris / OpenSolaris

All times are GMT -5. The time now is 08:49 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration