How to Install a LDAP Server
Install 389-ds
sudo apt-get install 389-ds-base
Configure directory server
Release 1.3 [old]
This is the configuration tool for older releases of 389 directory server. If there is no setup-ds tool in your system you probably have the new release, skip to Release 1.4 instruction bellow.
sudo setup-ds
When requested the server name, answer with the full qualified domain name of the host: hostname.domainname. In the next step you must supply the domain name as base for the configuration. So if your domain name is “foobar.com”, the base will be “dc=foobar,dc=com”.
Release 1.4 [new]
From release 1.4 we provide an example configuration file for creating the new directory instance.
[general]
config_version = 2
start = True
strict_host_checking = False
[slapd]
root_password = 12345678
[backend-userroot]
sample_entries = yes
suffix = dc=example,dc=com
After you set a password and correct suffix create a LDAP instance with dscreate:
sudo dscreate from-file ds389.conf
Enable and Start the service
sudo systemctl start dirsrv@localhost
sudo systemctl enable dirsrv@localhost
Add a LDAP section in the config file
The config file usually is /etc/ravada.conf. Add this configuration:
ldap:
admin_group: test.admin.group
admin_user:
dn: cn=Directory Manager
password: 12345678
base: 'dc=example,dc=com'
Then restart the services:
sudo systemctl restart rvd_back
sudo systemctl restart rvd_front
Insert one test user
The ravada backend script allows creating users in the LDAP
sudo rvd_back --add-user-ldap jimmy.mcnulty
There are more commands to easily manage LDAP entries. Check the LDAP section from the CLI documentation.