砥砺前行技术经验

openldap 安装

1 、下载上传安装文件,使用二进制传送
下载地址:http://www.oracle.com/technetwork/products/berkeleydb/downloads/index.html 
下载地址:http://www.openldap.org/software/download/
 db-5.1.29.tar.gz    openldap-2.4.48.tgz

2、修改安装文件权限
#chmod u+x   db-5.1.29.tar.gz
#chmod u+x   openldap-2.4.48.tgz

3、解压db-5.1.29.tar.gz

# tar -zxvf db-5.1.29.tar.gz

4、cd到解压后的文件夹

# cd db-5.1.29/build_unix

5、运行源码安装配置
#../dist/configure

6、执行自动编译
#make
#make install

7、在 /etc/ld.so.conf下添加
# vi /etc/ld.so.conf
include         /usr/local/BerkeleyDB.5.1/lib
保存:wq
运行ldconfig -v

8、解压openldap-2.4.48.tgz

# tar -zxvf openldap-2.4.48.tgz

9、添加输出环境变量
# vi /etc/profile
添加
export CPPFLAGS=-I/usr/local/BerkeleyDB.5.1/include
export LDFLAGS=-L/usr/local/BerkeleyDB.5.1/lib
export LD_LIBRARY_PATH=/usr/local/BerkeleyDB.5.1/lib:/usr/lib:/lib

# source /etc/profile

10、cd 到解压目录openldap-2.4.48

# cd openldap-2.4.48
11、运行源码安装配置
# ./configure --enable-crypt --enable-passwd

12、执行自动编译
#make depend
#make
#make install

13、修改/usr/local/etc/openldap下的slapd.conf
#vi /usr/local/etc/openldap/slapd.conf
加密密码方式:

# /usr/local/sbin/slappasswd -s  password
修改

include        /usr/local/etc/openldap/schema/core.schema
include         /usr/local/etc/openldap/schema/corba.schema
include         /usr/local/etc/openldap/schema/cosine.schema
include         /usr/local/etc/openldap/schema/inetorgperson.schema
include         /usr/local/etc/openldap/schema/java.schema
include         /usr/local/etc/openldap/schema/misc.schema
include         /usr/local/etc/openldap/schema/nis.schema
include         /usr/local/etc/openldap/schema/openldap.schema

suffix          "dc=demo,dc=dcampus,dc=com"
rootdn          "cn=Manager,dc=demo,dc=dcampus,dc=com"
rootpw          password
保存退出 :wq

(如果启动出现error while loading shared libraries 错误
检查/etc/ld.so.conf是否包含bdb的lib
添加后运行
ldconfig –v)

14、复制文件

# cd /usr/local/var/openldap-data/

# cp DB_CONFIG.example DB_CONFIG

# cp /usr/local/etc/openldap/DB_CONFIG.example /usr/local/var/openldap-data/DB_CONFIG 

15、增加配置,属性与值之间通常使用三个Tab键进行分开

# vi /usr/local/etc/openldap/slapd.conf

access to *
        by self write
        by anonymous auth
        by * read
loglevel 296
checkpoint 2048 10
logfile /usr/local/var/openldap-data/slapd.log

16、编辑 /etc/rsyslog.conf,最后增加
# vi /etc/rsyslog.conf
local4.*   /var/log/ldap.log

# /etc/init.d/rsyslog  restart

17、启动: /usr/local/libexec/slapd

sys