OpenLDAP

This page was originally set up when considering putting a personal LDAP server on the web. This didn’t happen, but the problem of having one address book permanently available still needs to be solved. I got as far as starting a server, although it seems I need root user privilege. None of the vendors help; they want this data private to them, and to create stickiness to them. I amended the page significantly in July 2013, when I copied it across to this wordpress wiki. I fixed the linkroll in March 2014 as I expect to want to install a server as part of my pump.io project.
Obviously a start point is http://www.openldap.org/, which has a bunch of definitive manual resources.
Unlike some of the RDBMS’s the directory arrives empty, although the user installation process has installed some entries.
How do I install a global administration user? Do i need one?
The usual tools work for start and stop and ldapsearch works from the command line. The Thunderbird address book can read entries in the directory but not drag & drop to the directory.
The OpenLDAP FAQ-o-matic has an addressbook tutorial that deals with both the permissions and LDIF updates required to get an addressbook working.
The browser with ldap://${hostname} finds the server but can’t query the database, it find no matches.
Interestingly the `domainname` is not set, is there a reason for this.

Putting things right

Firstly we need to enable channel 4 on the syslogd. This involves editing /etc/syslogd.conf

local4.*       /var/log/slapd.log

then insert a

loglevel             -1

in the slapd.conf file. This ensure maximum debug written to the log file.


Comments ( 2 )

  1. Developing Snipsnap | wiki.davelevy.info
    [...] and its a bit of an overhead to apply for a user here just to comment on these ramblings. I have looked at using OpenLDAP to manage a user community, but it has been too hard to install on the Qube given what I’ve [...]
  2. Apache | wiki . davelevy . info
    […] http://httpd.apache.org/docs/2.2/mod/mod_authnz_ldap.html, which needs an LDAP server, http://wiki.davelevy.info/openldap/ […]

This site uses Akismet to reduce spam. Learn how your comment data is processed.

By continuing to use the site, you agree to the use of cookies. more information

The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.

Close