Changeset 3a58850 for server/other

Timestamp:

03/11/2018 03:37:18 PM (6 years ago)

Author:

Pierre Labastie <pieere@…>

Branches:

10.0, 10.1, 11.0, 11.1, 11.2, 11.3, 12.0, 12.1, 8.3, 8.4, 9.0, 9.1, basic, bdubbs/svn, elogind, kea, ken/TL2024, ken/inkscape-core-mods, ken/tuningfonts, lazarus, lxqt, perl-modules, plabs/newcss, plabs/python-mods, python3.11, qt5new, rahul/power-profiles-daemon, renodr/vulkan-addition, trunk, upgradedb, xry111/intltool, xry111/llvm18, xry111/soup3, xry111/test-20220226, xry111/xf86-video-removal

Children:

7f80ece

Parents:

4f29081

Message:

Update configuration instructions for openldap

git-svn-id: svn://svn.linuxfromscratch.org/BLFS/trunk/BOOK@19940 af4574ff-66df-0310-9fd7-8a98e5e911e0

File:

• server/other/openldap.xml (modified) (5 diffs)

server/other/openldap.xml

@@ -322 +322 @@
       <title>Config Files</title>
 
-      <para>
-        <filename>/etc/openldap/*</filename>
-      </para>
+      <itemizedlist spacing="compact">
+        <listitem>
+          <para>
+            For LDAP client: <filename>/etc/openldap/ldap.conf</filename> and
+            <filename>~/.ldaprc</filename>
+          </para>
+        </listitem>
+        <listitem>
+          <para>
+            For LDAP server, two configuration mechanisms are used:
+            a legacy <filename>/etc/openldap/slapd.conf</filename>
+            configuration file and the recommended
+            <emphasis>slapd-config</emphasis> system, using an LDIF database
+            stored in
+            <filename class="directory">/etc/openldap/slapd.d</filename>.
+          </para>
+        </listitem>
+      </itemizedlist>
 
       <indexterm zone="openldap openldap-config">
-        <primary sortas="e-etc-openldap">/etc/openldap/*</primary>
+        <primary
+          sortas="e-etc-openldap-ldap.conf">/etc/openldap/ldap.conf</primary>
+      </indexterm>
+
+      <indexterm zone="openldap openldap-config">
+        <primary sortas="e-AA.ldaprc">~/.ldaprc</primary>
+      </indexterm>
+
+      <indexterm zone="openldap openldap-config">
+        <primary
+          sortas="e-etc-openldap-slapd.conf">/etc/openldap/slapd.conf</primary>
+      </indexterm>
+
+      <indexterm zone="openldap openldap-config">
+        <primary
+          sortas="e-etc-openldap-slapd.d">/etc/openldap/slapd.d/*</primary>
       </indexterm>
 
@@ -338 +368 @@
         Configuring the <command>slapd</command> servers can be complex.
         Securing the LDAP directory, especially if you are storing non-public
-        data such as password databases, can also be a challenging task. You'll
-        need to modify the <filename>/etc/openldap/slapd.conf</filename> and
-        <filename>/etc/openldap/ldap.conf</filename> files to set up
-        <application>OpenLDAP</application> for your particular needs.
-      </para>
+        data such as password databases, can also be a challenging task. In
+        order to set up <application>OpenLDAP</application>, you'll need to
+        modify either the <filename>/etc/openldap/slapd.conf</filename> 
+        file (old method), or the <filename>/etc/openldap/slapd.ldif</filename>
+        file and then use <command>ldapadd</command> to create de LDAP
+        configuration database in
+        <filename class="directory">/etc/openldap/slapd.d</filename>
+        (recommended by the OpenLDAP documentation).
+      </para>
+
+      <para>
+        The shipped configuration files suppose the loadable modules are
+        installed with their <filename class="extension">.la</filename>
+        files, which may not be true if you remove those files as instructed
+        in <xref linkend="libtool"/>. If this is the case, issue, as the
+        <systemitem class="username">root</systemitem> user:
+      </para>
+
+<screen role="root"><userinput>sed 's/\.la$//' -i /etc/openldap/slapd.{conf,ldif}{,.default}</userinput></screen>
 
       <note>
@@ -352 +396 @@
         </para>
       </note>
-      <indexterm zone="openldap openldap-config">
-        <primary
-        sortas="e-etc-openldap-slapd.conf">/etc/openldap/slapd.conf</primary>
-      </indexterm>
-
-      <indexterm zone="openldap openldap-config">
-        <primary
-        sortas="e-etc-openldap-ldap.conf">/etc/openldap/ldap.conf</primary>
-      </indexterm>
 
       <para>
         Resources to assist you with topics such as choosing a directory
-        configuration, backend and database definitions, access control settings,
-        running as a user other than <systemitem class="username">root</systemitem>
+        configuration, backend and database definitions, access control
+        settings, running as a user other than
+        <systemitem class="username">root</systemitem>
         and setting a <command>chroot</command> environment include:
       </para>
@@ -372 +408 @@
         <listitem>
           <para>
-            The <command>slapd</command> man page.
-          </para>
-        </listitem>
-        <listitem>
-          <para>
-            The <filename>slapd.conf</filename> man page.
+            The <emphasis role="strong">slapd(8)</emphasis> man page.
+          </para>
+        </listitem>
+        <listitem>
+          <para>
+            The <emphasis role="strong">slapd.conf(5)</emphasis> and
+            <emphasis role="strong">slapd-config(5)</emphasis> man pages.
           </para>
         </listitem>
@@ -384 +421 @@
             The <ulink url="http://www.openldap.org/doc/admin24/"> OpenLDAP 2.4
             Administrator's Guide</ulink> (also installed locally in
-            <filename class='directory'>
+            <filename class="directory">
             /usr/share/doc/openldap-&openldap-version;/guide/admin</filename>).
           </para>