OpenLDAP Faq-O-Matic : Trash :
How to make OpenLDAP accessible from Netscape?The following LDIF works for me. Should also be accessible from Outlook ; ) dn: dc=random, dc=com dc: random o: Random Inc. objectclass: organization objectclass: dcObject dn: cn=John Smith, dc=random, dc=com cn: John Smith mail: jsmith@random.com o: Random Inc. uid: jsmith givenname: John sn: Smith telephoneNumber: 555-1212 homephone: 1-415-666-6666 title: Web Developer objectclass: top objectclass: person objectclass: organizationalPerson objectclass: inetOrgPersonhcaley@loomer.com
And here is the slapd.conf that I would use with this ldif: include /usr/local/etc/openldap/slapd.at.conf include /usr/local/etc/openldap/slapd.oc.conf schemacheck on #referral ldap://root.openldap.org/ pidfile /usr/local/var/slapd.pid argsfile /usr/local/var/slapd.args ####################################################################### # ldbm database definitions ####################################################################### database ldbm suffix "dc=random, dc=com" rootdn "cn=root, dc=random,dc=com" rootpw secret lastmod on directory /usr/local/etc/openldap/dbhcaley@loomer.com
include /usr/local/etc/openldap/schema/core.schema
include /usr/local/etc/openldap/schema/cosine.schema
include /usr/local/etc/openldap/schema/inetorgperson.schema
# Define global ACLs to disable default read access.
# Do not enable referrals until AFTER you have a working directory
# service AND an understanding of referrals.
pidfile /usr/local/var/slapd.pid
argsfile /usr/local/var/slapd.args
schemacheck off
access to * by * read
#######################################################################
# ldbm database definitions
database ldbm
suffix "dc=random, dc=com"
rootpw {CRYPT}xRGdkaigealsj
rootdn "cn=Manager, dc=random, dc=com"
# Cleartext passwords, especially for the rootdn, should
# be avoid. See slappasswd(8) and slapd.conf(5) for details.
# Use of strong authentication encouraged.
# The database directory MUST exist prior to running slapd AND
# should only be accessable by the slapd/tools. Mode 700 recommended.
directory /usr/local/var/openldap-ldbm
# Indices to maintain
index objectClass eq
database ldbm
suffix "ou=contacts"
rootdn "cn=Manager, dc=random, dc=com"
rootpw {CRYPT}blahblahblah
directory /usr/local/var/contacts-ldbm
And here is an LDIF of sample database entries:
# contacts dn: ou=contacts ou: contacts objectClass: top objectClass: organizationalUnit description: Contacts Database # hcaley-contacts, contacts dn: ou=hcaley-contacts,ou=contacts objectClass: top objectClass: organizationalUnit ou: hcaley-contacts description: hcaley Contacts # Joe-Bob Testman, hcaley-contacts, contacts dn: cn=Joe-Bob Testman,ou=hcaley-contacts,ou=contacts objectClass: person objectClass: organizationalPerson objectClass: inetOrgPerson objectClass: top cn: Joe-Bob Testman givenName: Joe-Bob sn: Testman mail: testman@test.org mail: testman2@test.org mail: testman3@test.org homePostalAddress:: NTM1IFBpZXJjZSAjMjMxNA0KQWxiYW55LCBDQSA5NDcwNg== homePhone: 555-555-5555 businessCategory: Former-Employee/Contractor facsimileTelephoneNumber: 444-444-4444 facsimileTelephoneNumber: 777-777-7777 labeledURI: http://testman.org title: The Test Guy o: Test Organization telephoneNumber: 666-666-6666 telephoneNumber: 111-111-1111 pager: 222-222-2222N mobile: 333-333-3333 postOfficeBox: 350 postalAddress: Streety Ave. l: City st: CA postalCode: 94710 c: US info: These are some notes...
hcaley@loomer.com