[[email protected] ~]# slappasswd
New password:
Re-enter new password:
{SSHA}N3Xr7mUajfh9BY_________xx_WfWgb
:
suffix "dc=ichiayi,dc=com"
rootdn "cn=Manager,dc=ichiayi,dc=com"
:
rootpw {SSHA}N3Xr7mUajfh9BY_________xx_WfWgb
:
cd /etc/openldap
cp DB_CONFIG.example /var/lib/ldap/DB_CONFIG
root_unit.ldif
# root node
dn: dc=ichiayi,dc=com
dc: ichiayi
objectClass: dcObject
objectClass: organizationalUnit
ou: ichiayi Dot com
#login top
dn: ou=login,dc=ichiayi,dc=com
ou: login
objectClass: organizationalUnit
#user, uid, password
dn: ou=user,ou=login,dc=ichiayi,dc=com
ou: user
objectClass: organizationalUnit
#group
dn: ou=group,ou=login,dc=ichiayi,dc=com
ou: group
objectClass: organizationalUnit
##for company organization top
dn: ou=company,dc=ichiayi,dc=com
ou: company
objectClass: organizationalUnit
#for company organization (unit)
dn: ou=unit,ou=company,dc=ichiayi,dc=com
ou: unit
objectClass: organizationalUnit
#human resource (under unit)
dn: ou=hr,ou=unit,ou=company,dc=ichiayi,dc=com
ou: hr
objectClass: organizationalUnit
#MIS (under unit)
dn: ou=mis,ou=unit,ou=company,dc=ichiayi,dc=com
ou: mis
objectClass: organizationalUnit
#Tech (under unit)
dn: ou=tech,ou=unit,ou=company,dc=ichiayi,dc=com
ou: tech
objectClass: organizationalUnit
# for customers information
dn: ou=customer,ou=company,dc=ichiayi,dc=com
ou: customer
objectClass: organizationalUnit
slapadd -v -l root_unit.ldif
----
[[email protected] openldap]# slapadd -v -l /tmp/root_unit.ldif
added: "dc=ichiayi,dc=com" (00000001)
added: "ou=login,dc=ichiayi,dc=com" (00000002)
added: "ou=user,ou=login,dc=ichiayi,dc=com" (00000003)
added: "ou=group,ou=login,dc=ichiayi,dc=com" (00000004)
added: "ou=company,dc=ichiayi,dc=com" (00000005)
added: "ou=unit,ou=company,dc=ichiayi,dc=com" (00000006)
added: "ou=hr,ou=unit,ou=company,dc=ichiayi,dc=com" (00000007)
added: "ou=mis,ou=unit,ou=company,dc=ichiayi,dc=com" (00000008)
added: "ou=tech,ou=unit,ou=company,dc=ichiayi,dc=com" (00000009)
added: "ou=customer,ou=company,dc=ichiayi,dc=com" (0000000a)
----
chown -R ldap /var/lib/ldap/*
實際過程
[[email protected] openldap]# service ldap start
正在為 slapd 檢查設定檔案: config file testing succeeded
[ 確定 ]
正在啟動 slapd: [ 確定 ]
[[email protected] openldap]# ldapsearch -x -b "dc=ichiayi,dc=com"
# extended LDIF
#
# LDAPv3
# base <dc=ichiayi,dc=com> with scope subtree
# filter: (objectclass=*)
# requesting: ALL
#
# ichiayi.com
dn: dc=ichiayi,dc=com
dc: ichiayi
objectClass: dcObject
objectClass: organizationalUnit
ou: ichiayi Dot com
# login, ichiayi.com
dn: ou=login,dc=ichiayi,dc=com
ou: login
objectClass: organizationalUnit
# user, login, ichiayi.com
dn: ou=user,ou=login,dc=ichiayi,dc=com
ou: user
objectClass: organizationalUnit
# group, login, ichiayi.com
dn: ou=group,ou=login,dc=ichiayi,dc=com
ou: group
objectClass: organizationalUnit
# company, ichiayi.com
dn: ou=company,dc=ichiayi,dc=com
ou: company
objectClass: organizationalUnit
# unit, company, ichiayi.com
dn: ou=unit,ou=company,dc=ichiayi,dc=com
ou: unit
objectClass: organizationalUnit
# hr, unit, company, ichiayi.com
dn: ou=hr,ou=unit,ou=company,dc=ichiayi,dc=com
ou: hr
objectClass: organizationalUnit
# mis, unit, company, ichiayi.com
dn: ou=mis,ou=unit,ou=company,dc=ichiayi,dc=com
ou: mis
objectClass: organizationalUnit
# tech, unit, company, ichiayi.com
dn: ou=tech,ou=unit,ou=company,dc=ichiayi,dc=com
ou: tech
objectClass: organizationalUnit
# customer, company, ichiayi.com
dn: ou=customer,ou=company,dc=ichiayi,dc=com
ou: customer
objectClass: organizationalUnit
# search result
search: 2
result: 0 Success
# numResponses: 11
# numEntries: 10
[[email protected] openldap]#