Hi,<\/p>\n
<\/p>\n
after reading several tutorials and howtos for building a ldap-pdc i decided to write this small howto build on three different tutorials. Each one of them had it's small "bugs" so here is what worked for me:<\/p>\n
<\/p>\n
install openldap, set ldap password and edit slapd.conf:<\/p>\n
<\/p>\n
~# yum install openldap-servers openldap-clients<\/em> <\/p>\n change some lines:<\/p>\n <\/p>\n suffix "dc=DOMAIN,dc=LOCAL" <\/p>\n add this to the file:<\/p>\n <\/p>\n include \/etc\/openldap\/schema\/samba.schema \taccess to * <\/p>\n copy database<\/p>\n <\/p>\n ~# cp \/etc\/openldap\/DB_CONFIG.example \/var\/lib\/ldap\/DB_CONFIG<\/em><\/p>\n <\/p>\n now start the ldap server and add it to startup:<\/p>\n <\/p>\n ~# \/etc\/init.d\/ldap start<\/em> <\/p>\n change some lines in the migration script:<\/p>\n <\/p>\n ~# vim \/usr\/share\/openldap\/migration\/migrate_common.ph<\/em><\/p>\n <\/p>\n $DEFAULT_MAIL_DOMAIN = "DOMAIN.LCOAL"; <\/p>\n after that fill the ldap database<\/p>\n <\/p>\n ~# \/usr\/share\/openldap\/migration\/migrate_base.pl > base.ldif<\/em> <\/p>\n to keep it short: check here<\/a> and here.<\/a> Hi, after reading several tutorials and howtos for building a ldap-pdc i decided to write this small howto build on three different tutorials. Each one of them had it's small "bugs" so here is what worked for me: 1. Building LDAP Server install openldap, set ldap password and edit slapd.conf: ~# yum […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[11,7],"tags":[],"class_list":["post-86","post","type-post","status-publish","format-standard","hentry","category-linuxunix","category-servers"],"_links":{"self":[{"href":"https:\/\/ndk.sytes.net\/wordpress\/index.php?rest_route=\/wp\/v2\/posts\/86","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ndk.sytes.net\/wordpress\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ndk.sytes.net\/wordpress\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ndk.sytes.net\/wordpress\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/ndk.sytes.net\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=86"}],"version-history":[{"count":0,"href":"https:\/\/ndk.sytes.net\/wordpress\/index.php?rest_route=\/wp\/v2\/posts\/86\/revisions"}],"wp:attachment":[{"href":"https:\/\/ndk.sytes.net\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=86"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ndk.sytes.net\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=86"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ndk.sytes.net\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=86"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
\n\t~# slappasswd -h {SSHA}<\/em>
\n\t~# vim \/etc\/openldap\/slapd.conf<\/em><\/p>\n
\n\trootdn "cn=Manager,dc=DOMAIN,dc=LOCAL"
\n\trootpw {SSHA}PASSWORD -> generated with slapppasswd<\/p>\n
\n\taccess to attrs=userPassword,sambaLMPassword,sambaNTPassword
\n\t by self write
\n\t by dn="cn=Manager,dc=DOMAINdc=LOCAL" write
\n\t by anonymous auth
\n\t by * none<\/p>\n
\n\t by dn="cn=Manager,dc=DOMAIN,dc=LOCAL" write
\n\t by self write
\n\t by * read<\/p>\n
\n\t~# chkconfig ldap on<\/em><\/p>\n2. Add initial and exisitng users\/groups<\/h3>\n
\n\t$DEFAULT_BASE = "dc=DOMAIN,dc=LOCAL";<\/p>\n
\n\t~# ldapadd -x -W -D "cn=Manager,dc=DOMAIN,dc=LOCAL" -f base.ldif<\/em>
\n\t~# grep "x:[5-9][0-9][0-9]" \/etc\/passwd > passwd<\/em>
\n\t~# grep "x:[5-9][0-9][0-9]" \/etc\/group > group<\/em>
\n\t~# \/usr\/share\/openldap\/migration\/migrate_passwd.pl passwd > passwd.ldif<\/em>
\n\t~# \/usr\/share\/openldap\/migration\/migrate_group.pl group > group.ldif<\/em>
\n\t~# ldapadd -x -W -D "cn=Manager,dc=DOMAIN,dc=LOCAL" -f passwd.ldif<\/em>
\n\t~# ldapadd -x -W -D "cn=Manager,dc=DOMAIN,dc=LOCAL" -f group.ldif<\/em><\/p>\n3. Setup SAMBA<\/h3>\n
\n\t<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"