Openldap Basic Config common: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
Thomas (Diskussion | Beiträge) |
Thomas (Diskussion | Beiträge) |
||
Zeile 1: | Zeile 1: | ||
<pre> | <pre> | ||
#!/bin/bash | #!/bin/bash | ||
− | + | PWD=$(slappasswd -s $3) | |
− | + | BASE="dc=$1,dc=$2" | |
− | + | ADM="cn=admin,$BASE" | |
− | |||
+ | systemctl stop slapd | ||
+ | rm -r /var/lib/ldap/* | ||
+ | systemctl start slapd | ||
+ | echo base config | ||
ldapmodify -Y EXTERNAL -H ldapi:/// <<HERE | ldapmodify -Y EXTERNAL -H ldapi:/// <<HERE | ||
dn: olcDatabase={1}mdb,cn=config | dn: olcDatabase={1}mdb,cn=config | ||
changetype: modify | changetype: modify | ||
replace: olcSuffix | replace: olcSuffix | ||
− | olcSuffix: | + | olcSuffix: $BASE |
− | + | - | |
− | |||
− | |||
replace: olcRootDN | replace: olcRootDN | ||
− | olcRootDN: | + | olcRootDN: $ADM |
− | + | - | |
− | |||
− | |||
replace: olcRootPW | replace: olcRootPW | ||
olcRootPW: $PWD | olcRootPW: $PWD | ||
+ | HERE | ||
+ | |||
+ | echo base config database | ||
+ | ldapadd -x -D $ADM -w $3 <<HERE | ||
+ | dn: $BASE | ||
+ | objectClass: top | ||
+ | objectClass: dcObject | ||
+ | objectclass: organization | ||
+ | o: $1 | ||
+ | dc: $1 | ||
+ | |||
+ | dn: cn=admin,$BASE | ||
+ | objectClass: simpleSecurityObject | ||
+ | objectClass: organizationalRole | ||
+ | cn: admin | ||
+ | description: LDAP administrator | ||
+ | userpassword: $PWD | ||
HERE | HERE | ||
</pre> | </pre> |
Aktuelle Version vom 17. Januar 2018, 12:40 Uhr
#!/bin/bash PWD=$(slappasswd -s $3) BASE="dc=$1,dc=$2" ADM="cn=admin,$BASE" systemctl stop slapd rm -r /var/lib/ldap/* systemctl start slapd echo base config ldapmodify -Y EXTERNAL -H ldapi:/// <<HERE dn: olcDatabase={1}mdb,cn=config changetype: modify replace: olcSuffix olcSuffix: $BASE - replace: olcRootDN olcRootDN: $ADM - replace: olcRootPW olcRootPW: $PWD HERE echo base config database ldapadd -x -D $ADM -w $3 <<HERE dn: $BASE objectClass: top objectClass: dcObject objectclass: organization o: $1 dc: $1 dn: cn=admin,$BASE objectClass: simpleSecurityObject objectClass: organizationalRole cn: admin description: LDAP administrator userpassword: $PWD HERE