OpenLDAP

root@ldap:~# apt-get install slapd ldap-utils

Informe e repita a senha do Administrador LDAP. 

root@ldap:~# dpkg-reconfigure slapd

Perguntas do dbconf:

  1. – Omitir as Configurações: Não
  2. – Domínio DNS: exemplo.org
  3. – Nome da Empresa: Exemplo
  4. – Senha do Admin: senha123
  5. – Confirme a Senha: senha123
  6. – Método de Armazenamento: HDB
root@ldap:~# ldapsearch -x -LLL -h 127.0.0.1 -b dc=exemplo,dc=org
dn: dc=exemplo,dc=org
objectClass: top
objectClass: dcObject
objectClass: organization
o: Exemplo
dc: exemplo
 
dn: cn=admin,dc=exemplo,dc=org
objectClass: simpleSecurityObject
objectClass: organizationalRole
cn: admin
description: LDAP administrator
root@ldap:~# vim /etc/ldap/ldap.conf
[...]
BASE    dc=examplo,dc=org
URI     ldap://ldap.examplo.org
[...]
root@ldap:~# cat ou.ldif
dn: ou=Grupos,dc=exemplo,dc=org
objectClass: organizationalUnit
ou: Grupos
description: Grupos
 
dn: ou=Usuarios,dc=exemplo,dc=org
objectClass: organizationalUnit
ou: Usuarios
description: Usuarios
root@ldap:~# ldapadd -h localhost -p389 -x -D cn=admin,dc=exemplo,dc=org -f ou.ldif -W
Enter LDAP Password: 
adding new entry "ou=Grupos,dc=exemplo,dc=org"
 
adding new entry "ou=Usuarios,dc=exemplo,dc=org"
root@ldap:~# cat user.ldif
dn: uid=gean,ou=Usuarios,dc=exemplo,dc=org
objectClass: inetOrgPerson
objectClass: organizationalPerson
objectClass: person
objectClass: top
uid: gean
sn: Gean
cn: Martins
mail: gean@@exemplo.org
description: "Analista de Infraestrutura"
mobile: 91234-0000
telephoneNumber: 8000
userPassword: senha123
root@ldap:~# ldapadd -h localhost -p389 -x -D cn=admin,dc=exemplo,dc=org -f user.ldif -W
Enter LDAP Password: 
adding new entry "uid=gean,ou=Usuarios,dc=exemplo,dc=org"
root@ldap:~# cat groups.ldif
dn: cn=analistas,ou=Grupos,dc=exemplo,dc=org
objectClass: top
objectClass: posixGroup
cn: analistas
gidNumber: 5000
memberUid: gean
root@ldap:~# ldapadd -h localhost -p389 -x -D cn=admin,dc=exemplo,dc=org -f groups.ldif -W
Enter LDAP Password: 
adding new entry "cn=analistas,ou=Grupos,dc=exemplo,dc=org"
root@ldap:~# ldapsearch -h localhost -p 389 -x -D cn=admin,dc=exemplo,dc=org -W -b ou=Usuarios,dc=exemplo,dc=org -LLL uid=gean
Enter LDAP Password: 
dn: uid=gean,ou=Usuarios,dc=exemplo,dc=org
objectClass: inetOrgPerson
objectClass: organizationalPerson
objectClass: person
objectClass: top
uid: gean
sn: Gean
cn: Martins
mail: gean@@exemplo.org
description: "Analista de Infraestrutura"
mobile: 91234-0000
telephoneNumber: 8000
userPassword:: bWFydGluczU4
root@ldap:~# cat mod_user.ldif
dn: uid=gean,ou=Usuarios,dc=exemplo,dc=org
changetype: modify
add: givenName
givenName: Gean Martins
-
replace: mail
mail: gean@exemplo.org
root@ldap:~# ldapadd -h localhost -p389 -x -D cn=admin,dc=exemplo,dc=org -f mod_user.ldif -W
Enter LDAP Password: 
modifying entry "uid=gean,ou=Usuarios,dc=exemplo,dc=org"
root@ldap:~# ldapsearch -h localhost -p 389 -x -D cn=admin,dc=exemplo,dc=org -W -b ou=Usuarios,dc=exemplo,dc=org -LLL uid=gean
Enter LDAP Password: 
dn: uid=gean,ou=Usuarios,dc=exemplo,dc=org
objectClass: inetOrgPerson
objectClass: organizationalPerson
objectClass: person
objectClass: top
uid: gean
sn: Gean
cn: Martins
description: "Analista de Infraestrutura"
mobile: 91234-0000
telephoneNumber: 8000
userPassword:: bWFydGluczU4
givenName: Gean Martins
mail: gean@exemplo.org