source: server/other/openldap.xml@ 85ec85ef

gnome
Last change on this file since 85ec85ef was c463c87, checked in by Christopher Gregory <cjg@…>, 10 years ago

Removed excess white space and updated systemd instructions on svnserver autofs bluez fcron sysstat nfs-utils ntp rsync samba wpa_supplicant
avahi mariadb postgresql exim postfix apache bind proftpd vsftpd openldap unbound xinetd and clutter pages

git-svn-id: svn://svn.linuxfromscratch.org/BLFS/branches/gnome@13434 af4574ff-66df-0310-9fd7-8a98e5e911e0

  • Property mode set to 100644
File size: 25.7 KB
Line 
1<?xml version="1.0" encoding="ISO-8859-1"?>
2<!DOCTYPE sect1 PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN"
3 "http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd" [
4 <!ENTITY % general-entities SYSTEM "../../general.ent">
5 %general-entities;
6
7 <!ENTITY openldap-download-http " ">
8 <!ENTITY openldap-download-ftp "ftp://ftp.openldap.org/pub/OpenLDAP/openldap-release/openldap-&openldap-version;.tgz">
9 <!ENTITY openldap-md5sum "b0d5ee4b252c841dec6b332d679cf943">
10 <!ENTITY openldap-size "5.3 MB">
11 <!ENTITY openldap-buildsize "48 MB (client) 103 MB (server)">
12 <!ENTITY openldap-time "0.9 SBU (client) 1.8 SBU (server)">
13]>
14
15<sect1 id="openldap" xreflabel="OpenLDAP-&openldap-version;">
16 <?dbhtml filename="openldap.html"?>
17
18 <sect1info>
19 <othername>$LastChangedBy$</othername>
20 <date>$Date$</date>
21 </sect1info>
22
23 <title>OpenLDAP-&openldap-version;</title>
24
25 <indexterm zone="openldap">
26 <primary sortas="a-OpenLDAP">OpenLDAP</primary>
27 </indexterm>
28
29 <sect2 role="package">
30 <title>Introduction to OpenLDAP</title>
31
32 <para>
33 The <application>OpenLDAP</application> package provides an open
34 source implementation of the Lightweight Directory Access Protocol.
35 </para>
36
37 &lfs75_checked;
38
39 <bridgehead renderas="sect3">Package Information</bridgehead>
40 <itemizedlist spacing="compact">
41 <listitem>
42 <para>
43 Download (HTTP): <ulink url="&openldap-download-http;"/>
44 </para>
45 </listitem>
46 <listitem>
47 <para>
48 Download (FTP): <ulink url="&openldap-download-ftp;"/>
49 </para>
50 </listitem>
51 <listitem>
52 <para>
53 Download MD5 sum: &openldap-md5sum;
54 </para>
55 </listitem>
56 <listitem>
57 <para>
58 Download size: &openldap-size;
59 </para>
60 </listitem>
61 <listitem>
62 <para>
63 Estimated disk space required: &openldap-buildsize;
64 </para>
65 </listitem>
66 <listitem>
67 <para>
68 Estimated build time: &openldap-time;
69 </para>
70 </listitem>
71 </itemizedlist>
72
73 <bridgehead renderas="sect3">Additional Downloads</bridgehead>
74 <itemizedlist spacing="compact">
75 <listitem>
76 <para>
77 Required patch:
78 <ulink url="&patch-root;/openldap-&openldap-version;-blfs_paths-1.patch"/>
79 </para>
80 </listitem>
81 <listitem>
82 <para>
83 Required patch:
84 <ulink url="&patch-root;/openldap-&openldap-version;-symbol_versions-1.patch"/>
85 </para>
86 </listitem>
87 <!-- <listitem>
88 <para>
89 Optional patch:
90 <ulink url="&patch-root;/openldap-&openldap-version;-ntlm-1.patch"/>
91 </para>
92 </listitem> -->
93 </itemizedlist>
94
95 <bridgehead renderas="sect3">OpenLDAP Dependencies</bridgehead>
96
97 <bridgehead renderas="sect4">Required</bridgehead>
98 <para role="required">
99 <xref linkend="db"/> (only if building server)
100 </para>
101
102 <bridgehead renderas="sect4">Recommended</bridgehead>
103 <para role="recommended">
104 <xref linkend="cyrus-sasl"/> and
105 <xref linkend="openssl"/>
106 </para>
107
108 <bridgehead renderas="sect4">Optional</bridgehead>
109 <para role="optional">
110 <xref linkend="icu"/>,
111 <xref linkend="mariadb"/> or
112 <ulink url="http://www.mysql.com/">MySQL</ulink> or
113 <xref linkend="postgresql"/>,
114 <ulink url="http://www.openslp.org/">OpenSLP</ulink>,
115 <xref linkend="pth"/> and
116 <xref linkend="unixodbc"/>
117 </para>
118
119 <para condition="html" role="usernotes">User Notes:
120 <ulink url="&blfs-wiki;/openldap"/>
121 </para>
122 </sect2>
123
124 <sect2 role="installation">
125 <title>Installation of OpenLDAP</title>
126
127 <!-- <important>
128 <para>
129 Without the following patch, the <application>Evolution</application>
130 Exchange addressbook integration uses simple binds with cleartext
131 passwords. If you are going to build
132 <application>Evolution Data Server</application> with
133 <application>OpenLDAP</application> support, apply the following patch:
134 </para>
135
136<screen><userinput>patch -Np1 -i ../openldap-&openldap-version;-ntlm-1.patch</userinput></screen>
137 </important> -->
138
139 <note>
140 <para>
141 If you only need to install the client side <command>ldap*</command>
142 binaries, corresponding man pages, libraries and header files (referred to
143 as a <quote>client-only</quote> install), issue these
144 commands instead of the following ones (no test suite available):
145 </para>
146
147<screen><userinput>patch -Np1 -i ../openldap-&openldap-version;-blfs_paths-1.patch &amp;&amp;
148patch -Np1 -i ../openldap-&openldap-version;-symbol_versions-1.patch &amp;&amp;
149autoconf &amp;&amp;
150./configure --prefix=/usr \
151 --sysconfdir=/etc \
152 --disable-static \
153 --enable-dynamic \
154 --disable-debug \
155 --disable-slapd &amp;&amp;
156make depend &amp;&amp;
157make</userinput></screen>
158
159 <para>
160 Then, as the <systemitem class="username">root</systemitem> user:
161 </para>
162
163<screen role="root"><userinput>make install</userinput></screen>
164
165 </note>
166
167 <para>
168 There should be a dedicated user and group to take control
169 of the <command>slapd</command> daemon after it is
170 started. Issue the following commands as the
171 <systemitem class="username">root</systemitem> user:
172 </para>
173
174<screen role="root"><userinput>groupadd -g 83 ldap &amp;&amp;
175useradd -c "OpenLDAP Daemon Owner" -d /var/lib/openldap -u 83 \
176 -g ldap -s /bin/false ldap</userinput></screen>
177
178 <para>
179 Install <application>OpenLDAP</application> by
180 running the following commands:
181 </para>
182
183<screen><userinput>patch -Np1 -i ../openldap-&openldap-version;-blfs_paths-1.patch &amp;&amp;
184patch -Np1 -i ../openldap-&openldap-version;-symbol_versions-1.patch &amp;&amp;
185autoconf &amp;&amp;
186./configure --prefix=/usr \
187 --sysconfdir=/etc \
188 --localstatedir=/var \
189 --libexecdir=/usr/lib \
190 --disable-static \
191 --disable-debug \
192 --enable-dynamic \
193 --enable-crypt \
194 --enable-spasswd \
195 --enable-modules \
196 --enable-rlookups \
197 --enable-backends=mod \
198 --enable-overlays=mod \
199 --disable-ndb \
200 --disable-sql &amp;&amp;
201make depend &amp;&amp;
202make</userinput></screen>
203
204 <para>
205 To test the results, issue: <command>make test</command>. Tests may fail
206 after a long time (~ 5 SBU).
207 </para>
208
209 <para>
210 Now, as the <systemitem class="username">root</systemitem> user:
211 </para>
212
213<screen role="root"><userinput>make install &amp;&amp;
214
215chmod -v 700 /var/lib/openldap &amp;&amp;
216chown -v -R root:ldap /var/lib/openldap &amp;&amp;
217chmod -v 640 /etc/openldap/{slapd.{conf,ldif},DB_CONFIG.example} &amp;&amp;
218chown -v root:ldap /etc/openldap/{slapd.{conf,ldif},DB_CONFIG.example} &amp;&amp;
219install -v -dm700 -o ldap -g ldap /etc/openldap/slapd.d &amp;&amp;
220
221install -v -dm755 /usr/share/doc/openldap-&openldap-version; &amp;&amp;
222cp -vfr doc/drafts /usr/share/doc/openldap-&openldap-version; &amp;&amp;
223cp -vfr doc/rfc /usr/share/doc/openldap-&openldap-version; &amp;&amp;
224cp -vfr doc/guide /usr/share/doc/openldap-&openldap-version;</userinput></screen>
225
226 <para>
227 Having slapd configuration files and ldap databases in /var/lib/openldap
228 readable by anyone is a SECURITY ISSUE, especially since a file stores
229 admin password in PLAIN TEXT. That's why mode 640 and root:ldap ownership
230 were used. Owner is root, so only root can modify the file, and group is
231 ldap, so that the group which owns slapd daemon could read but not modify
232 the file in case of a security breach.
233 </para>
234
235 </sect2>
236
237 <sect2 role="commands">
238 <title>Command Explanations</title>
239
240 <xi:include xmlns:xi="http://www.w3.org/2001/XInclude"
241 href="../../xincludes/static-libraries.xml"/>
242
243 <para>
244 <parameter>--disable-debug</parameter>: This switch disables
245 the debugging code in <application>OpenLDAP</application>.
246 </para>
247
248 <para>
249 <parameter>--enable-dynamic</parameter>: This switch forces the
250 <application>OpenLDAP</application> libraries to be dynamically
251 linked to the executable programs.
252 </para>
253
254 <para>
255 <parameter>--enable-crypt</parameter>: This switch enables using of
256 <command>crypt(3)</command> passwords.
257 </para>
258
259 <para>
260 <parameter>--enable-spasswd</parameter>: This switch enables
261 <application>SASL</application> password verification.
262 </para>
263
264 <para>
265 <parameter>--enable-modules</parameter>: This switch enables dynamic
266 module support.
267 </para>
268
269 <para>
270 <parameter>--enable-rlookups</parameter>: This switch enables
271 reverse lookups of client hostnames.
272 </para>
273
274 <para>
275 <parameter>--enable-backends</parameter>: This switch enables
276 all available backends.
277 </para>
278
279 <para>
280 <parameter>--enable-overlays</parameter>: This switch enables
281 all available overlays.
282 </para>
283
284 <para>
285 <parameter>--disable-ndb</parameter>: This switch disables
286 <application>MySQL</application> NDB Cluster backend
287 which causes configure to fail if
288 <application>MySQL</application> is present.
289 </para>
290
291 <para>
292 <parameter>--disable-sql</parameter>: This switch explicitly
293 disables the SQL backend. Omit this switch if a SQL server is
294 installed and you are going to use a SQL backend.
295 </para>
296
297 <para>
298 <parameter>--libexecdir=/usr/lib</parameter>: This switch controls where
299 the <filename class="directory">/usr/lib/openldap</filename> directory is
300 installed. Everything in that directory is a library, so it belongs under
301 <filename class="directory">/usr/lib</filename> instead of
302 <filename class="directory">/usr/libexec</filename>.
303 </para>
304
305 <para>
306 <option>--enable-slp</option>: This switch enables
307 SLPv2 support. Use it if you have installed
308 <ulink url="http://www.openslp.org/">OpenSLP</ulink>.
309 </para>
310
311 <note>
312 <para>
313 You can run <command>./configure --help</command> to see if there
314 are other switch you can pass to the <command>configure</command>
315 command to enable other options or dependency packages.
316 </para>
317 </note>
318
319 </sect2>
320
321 <sect2 role="configuration">
322 <title>Configuring OpenLDAP</title>
323
324 <sect3 id="openldap-config">
325 <title>Config Files</title>
326
327 <para>
328 <filename>/etc/openldap/*</filename>
329 </para>
330
331 <indexterm zone="openldap openldap-config">
332 <primary sortas="e-etc-openldap">/etc/openldap/*</primary>
333 </indexterm>
334
335 </sect3>
336
337 <sect3>
338 <title>Configuration Information</title>
339
340 <para>
341 Configuring the <command>slapd</command> servers can be complex.
342 Securing the LDAP directory, especially if you are storing non-public
343 data such as password databases, can also be a challenging task. You'll
344 need to modify the <filename>/etc/openldap/slapd.conf</filename> and
345 <filename>/etc/openldap/ldap.conf</filename> files to set up
346 <application>OpenLDAP</application> for your particular needs.
347 </para>
348
349 <indexterm zone="openldap openldap-config">
350 <primary
351 sortas="e-etc-openldap-slapd.conf">/etc/openldap/slapd.conf</primary>
352 </indexterm>
353
354 <indexterm zone="openldap openldap-config">
355 <primary
356 sortas="e-etc-openldap-ldap.conf">/etc/openldap/ldap.conf</primary>
357 </indexterm>
358
359 <para>
360 Resources to assist you with topics such as choosing a directory
361 configuration, backend and database definitions, access control settings,
362 running as a user other than <systemitem class="username">root</systemitem>
363 and setting a <command>chroot</command> environment include:
364 </para>
365
366 <itemizedlist spacing="compact">
367 <listitem>
368 <para>
369 The <command>slapd</command> man page.
370 </para>
371 </listitem>
372 <listitem>
373 <para>
374 The <filename>slapd.conf</filename> man page.
375 </para>
376 </listitem>
377 <listitem>
378 <para>
379 The <ulink url="http://www.openldap.org/doc/admin24/">
380 OpenLDAP 2.4 Administrator's Guide</ulink>
381 (also installed locally in <filename class='directory'>
382 /usr/share/doc/openldap-&openldap-version;/guide/admin</filename>).
383 </para>
384 </listitem>
385 <listitem>
386 <para>
387 Documents located at
388 <ulink url="http://www.openldap.org/pub/"/>.
389 </para>
390 </listitem>
391 </itemizedlist>
392
393 </sect3>
394
395 <sect3>
396 <title>Mozilla Address Directory</title>
397
398 <para>
399 By default, LDAPv2 support is disabled in the
400 <filename>slapd.conf</filename> file. Once the database is properly
401 set up and <application>Mozilla</application> is configured to use the
402 directory, you must add <option>allow bind_v2</option> to the
403 <filename>slapd.conf</filename> file.
404 </para>
405
406 </sect3>
407
408 <sect3 id="openldap-init-systemd">
409 <title>Systemd Unit File</title>
410
411 <para>The systemd-units package provides a native systemd unit file.
412 To install and enable the systemd unit file included
413 in the <xref linkend="systemd-units"/> package, run the following
414 command as the <systemitem class="username">root</systemitem>user:
415 </para>
416
417 <indexterm zone="openldap openldap-init-systemd">
418 <primary sortas="f-slapd">slapd</primary>
419 </indexterm>
420
421<screen role="root"><userinput>make install-slapd</userinput></screen>
422
423 <note>
424 <para>
425 You'll need to modify the
426 <filename>/etc/default/slapd</filename> to include the
427 parameters needed for your specific configuration. See the
428 <command>slapd</command> man page for parameter information.
429 </para>
430 </note>
431
432 </sect3>
433
434 <sect3>
435 <title>Testing the Configuration</title>
436
437 <para>
438 Start the LDAP server using the init script as the <systemitem class="username">root</systemitem> user:
439 </para>
440
441<screen role="root"><userinput>systemctl start slapd.service</userinput></screen>
442
443 <para>
444 Verify access to the LDAP server with the following command:
445 </para>
446
447<screen><userinput>ldapsearch -x -b '' -s base '(objectclass=*)' namingContexts</userinput></screen>
448
449 <para>
450 The expected result is:
451 </para>
452
453<screen><computeroutput># extended LDIF
454#
455# LDAPv3
456# base &lt;&gt; with scope base
457# filter: (objectclass=*)
458# requesting: namingContexts
459#
460
461#
462dn:
463namingContexts: dc=my-domain,dc=com
464
465# search result
466search: 2
467result: 0 Success
468
469# numResponses: 2
470# numEntries: 1</computeroutput></screen>
471
472 </sect3>
473
474 </sect2>
475
476 <sect2 role="content">
477 <title>Contents</title>
478
479 <segmentedlist>
480 <segtitle>Installed Programs</segtitle>
481 <segtitle>Installed Libraries</segtitle>
482 <segtitle>Installed Directories</segtitle>
483
484 <seglistitem>
485 <seg>
486 ldapadd, ldapcompare, ldapdelete, ldapexop, ldapmodify, ldapmodrdn,
487 ldappasswd, ldapsearch, ldapurl, ldapwhoami, slapacl, slapadd,
488 slapauth, slapcat, slapd, slapdn, slapindex, slappasswd, slapschema,
489 and slaptest
490 </seg>
491 <seg>
492 liblber.so, libldap.so, libldap_r.so,
493 and several under /usr/lib/openldap
494 </seg>
495 <seg>
496 /etc/openldap,
497 /usr/lib/openldap,
498 /usr/share/doc/openldap-&openldap-version;, and
499 /var/lib/openldap
500 </seg>
501 </seglistitem>
502 </segmentedlist>
503
504 <variablelist>
505 <bridgehead renderas="sect3">Short Descriptions</bridgehead>
506 <?dbfo list-presentation="list"?>
507 <?dbhtml list-presentation="table"?>
508
509 <varlistentry id="ldapadd">
510 <term><command>ldapadd</command></term>
511 <listitem>
512 <para>
513 opens a connection to an LDAP server, binds and adds entries.
514 </para>
515 <indexterm zone="openldap ldapadd">
516 <primary sortas="b-ldapadd">ldapadd</primary>
517 </indexterm>
518 </listitem>
519 </varlistentry>
520
521 <varlistentry id="ldapcompare">
522 <term><command>ldapcompare</command></term>
523 <listitem>
524 <para>
525 opens a connection to an LDAP server, binds and performs
526 a compare using specified parameters.
527 </para>
528 <indexterm zone="openldap ldapcompare">
529 <primary sortas="b-ldapcompare">ldapcompare</primary>
530 </indexterm>
531 </listitem>
532 </varlistentry>
533
534 <varlistentry id="ldapdelete">
535 <term><command>ldapdelete</command></term>
536 <listitem>
537 <para>
538 opens a connection to an LDAP server, binds and deletes
539 one or more entries.
540 </para>
541 <indexterm zone="openldap ldapdelete">
542 <primary sortas="b-ldapdelete">ldapdelete</primary>
543 </indexterm>
544 </listitem>
545 </varlistentry>
546
547 <varlistentry id="ldapexop">
548 <term><command>ldapexop</command></term>
549 <listitem>
550 <para>
551 issues the LDAP extended operation specified by
552 oid or one of the special keywords whoami,
553 cancel, or refresh.
554 </para>
555 <indexterm zone="openldap ldapexop">
556 <primary sortas="b-ldapexop">ldapexop</primary>
557 </indexterm>
558 </listitem>
559 </varlistentry>
560
561 <varlistentry id="ldapmodify">
562 <term><command>ldapmodify</command></term>
563 <listitem>
564 <para>
565 opens a connection to an LDAP server, binds and modifies entries.
566 </para>
567 <indexterm zone="openldap ldapmodify">
568 <primary sortas="b-ldapmodify">ldapmodify</primary>
569 </indexterm>
570 </listitem>
571 </varlistentry>
572
573 <varlistentry id="ldapmodrdn">
574 <term><command>ldapmodrdn</command></term>
575 <listitem>
576 <para>
577 opens a connection to an LDAP server, binds and modifies
578 the RDN of entries.
579 </para>
580 <indexterm zone="openldap ldapmodrdn">
581 <primary sortas="b-ldapmodrdn">ldapmodrdn</primary>
582 </indexterm>
583 </listitem>
584 </varlistentry>
585
586 <varlistentry id="ldappasswd">
587 <term><command>ldappasswd</command></term>
588 <listitem>
589 <para>
590 is a tool used to set the password of an LDAP user.
591 </para>
592 <indexterm zone="openldap ldappasswd">
593 <primary sortas="b-ldappasswd">ldappasswd</primary>
594 </indexterm>
595 </listitem>
596 </varlistentry>
597
598 <varlistentry id="ldapsearch">
599 <term><command>ldapsearch</command></term>
600 <listitem>
601 <para>
602 opens a connection to an LDAP server, binds and performs
603 a search using specified parameters.
604 </para>
605 <indexterm zone="openldap ldapsearch">
606 <primary sortas="b-ldapsearch">ldapsearch</primary>
607 </indexterm>
608 </listitem>
609 </varlistentry>
610
611 <varlistentry id="ldapurl">
612 <term><command>ldapurl</command></term>
613 <listitem>
614 <para>
615 is a command that allows to either compose or
616 decompose LDAP URIs.
617 </para>
618 <indexterm zone="openldap ldapurl">
619 <primary sortas="b-ldapurl">ldapurl</primary>
620 </indexterm>
621 </listitem>
622 </varlistentry>
623
624 <varlistentry id="ldapwhoami">
625 <term><command>ldapwhoami</command></term>
626 <listitem>
627 <para>
628 opens a connection to an LDAP server, binds and displays
629 whoami information.
630 </para>
631 <indexterm zone="openldap ldapwhoami">
632 <primary sortas="b-ldapwhoami">ldapwhoami</primary>
633 </indexterm>
634 </listitem>
635 </varlistentry>
636
637 <varlistentry id="slapacl">
638 <term><command>slapacl</command></term>
639 <listitem>
640 <para>
641 is used to check the behavior of slapd by verifying
642 access to directory data according to the access control
643 list directives defined in its configuration.
644 </para>
645 <indexterm zone="openldap slapacl">
646 <primary sortas="b-slapacl">slapacl</primary>
647 </indexterm>
648 </listitem>
649 </varlistentry>
650
651 <varlistentry id="slapadd">
652 <term><command>slapadd</command></term>
653 <listitem>
654 <para>
655 is used to add entries specified in LDAP Directory Interchange
656 Format (LDIF) to an LDAP database.
657 </para>
658 <indexterm zone="openldap slapadd">
659 <primary sortas="b-slapadd">slapadd</primary>
660 </indexterm>
661 </listitem>
662 </varlistentry>
663
664 <varlistentry id="slapauth">
665 <term><command>slapauth</command></term>
666 <listitem>
667 <para>
668 is used to check the behavior of the slapd
669 in mapping identities for authentication and
670 authorization purposes, as specified in slapd.conf.
671 </para>
672 <indexterm zone="openldap slapauth">
673 <primary sortas="b-slapauth">slapauth</primary>
674 </indexterm>
675 </listitem>
676 </varlistentry>
677
678 <varlistentry id="slapcat">
679 <term><command>slapcat</command></term>
680 <listitem>
681 <para>
682 is used to generate an LDAP LDIF output based upon the
683 contents of a slapd database.
684 </para>
685 <indexterm zone="openldap slapcat">
686 <primary sortas="b-slapcat">slapcat</primary>
687 </indexterm>
688 </listitem>
689 </varlistentry>
690
691 <varlistentry id="slapd">
692 <term><command>slapd</command></term>
693 <listitem>
694 <para>
695 is the standalone LDAP server.
696 </para>
697 <indexterm zone="openldap slapd">
698 <primary sortas="b-slapd">slapd</primary>
699 </indexterm>
700 </listitem>
701 </varlistentry>
702
703 <varlistentry id="slapdn">
704 <term><command>slapdn</command></term>
705 <listitem>
706 <para>
707 checks a list of string-represented DNs based on schema syntax.
708 </para>
709 <indexterm zone="openldap slapdn">
710 <primary sortas="b-slapdn">slapdn</primary>
711 </indexterm>
712 </listitem>
713 </varlistentry>
714
715 <varlistentry id="slapindex">
716 <term><command>slapindex</command></term>
717 <listitem>
718 <para>
719 is used to regenerate slapd indexes based upon the current
720 contents of a database.
721 </para>
722 <indexterm zone="openldap slapindex">
723 <primary sortas="b-slapindex">slapindex</primary>
724 </indexterm>
725 </listitem>
726 </varlistentry>
727
728 <varlistentry id="slappasswd">
729 <term><command>slappasswd</command></term>
730 <listitem>
731 <para>
732 is an <application>OpenLDAP</application> password utility.
733 </para>
734 <indexterm zone="openldap slappasswd">
735 <primary sortas="b-slappasswd">slappasswd</primary>
736 </indexterm>
737 </listitem>
738 </varlistentry>
739
740 <varlistentry id="slapschema">
741 <term><command>slapschema</command></term>
742 <listitem>
743 <para>
744 is used to check schema compliance of the contents
745 of a slapd database.
746 </para>
747 <indexterm zone="openldap slapschema">
748 <primary sortas="b-slapschema">slapschema</primary>
749 </indexterm>
750 </listitem>
751 </varlistentry>
752
753 <varlistentry id="slaptest">
754 <term><command>slaptest</command></term>
755 <listitem>
756 <para>
757 checks the sanity of the <filename>slapd.conf</filename> file.
758 </para>
759 <indexterm zone="openldap slaptest">
760 <primary sortas="b-slaptest">slaptest</primary>
761 </indexterm>
762 </listitem>
763 </varlistentry>
764
765 <varlistentry id="liblber">
766 <term><filename class="libraryfile">liblber.so</filename></term>
767 <listitem>
768 <para>
769 is a set of Lightweight Basic Encoding Rules routines. These
770 routines are used by the LDAP library routines to encode and decode
771 LDAP protocol elements using the (slightly simplified) Basic
772 Encoding Rules defined by LDAP. They are not normally used directly
773 by an LDAP application program except in the handling of controls
774 and extended operations.
775 </para>
776 <indexterm zone="openldap liblber">
777 <primary sortas="c-liblber">liblber.so</primary>
778 </indexterm>
779 </listitem>
780 </varlistentry>
781
782 <varlistentry id="libldap">
783 <term><filename class="libraryfile">libldap.so</filename></term>
784 <listitem>
785 <para>
786 supports the LDAP programs and provide functionality for
787 other programs interacting with LDAP.
788 </para>
789 <indexterm zone="openldap libldap">
790 <primary sortas="c-libldap">libldap.so</primary>
791 </indexterm>
792 </listitem>
793 </varlistentry>
794
795 <varlistentry id="libldap_r">
796 <term><filename class="libraryfile">libldap_r.so</filename></term>
797 <listitem>
798 <para>
799 contains the functions required by the LDAP programs to
800 produce the results from LDAP requests.
801 </para>
802 <indexterm zone="openldap libldap_r">
803 <primary sortas="c-libldap_r">libldap_r.so</primary>
804 </indexterm>
805 </listitem>
806 </varlistentry>
807
808 </variablelist>
809
810 </sect2>
811
812</sect1>
Note: See TracBrowser for help on using the repository browser.