[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: quick-start guide out-of-date
- To: Buchan Milne <bgmilne@staff.telkomsa.net>
- Subject: Re: quick-start guide out-of-date
- From: "Mark J. Reed" <markjreed@gmail.com>
- Date: Wed, 20 Oct 2010 13:33:58 -0400
- Cc: Anders Geffen <anders.geffen@yahoo.com>, openldap-technical@openldap.org
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:received:in-reply-to :references:date:message-id:subject:from:to:cc:content-type; bh=5XW66YeNCRGWohEqOH8xEuOHrqZWXMDiIGIrzaP8/lM=; b=SsCFaEfqRyWmIioDhPOjE3PTkMAgSc5psMZWTrsTo2hghFSXRWIgBJQnC/yxA/dgAe 0Y39qL1cXVjexRyuzoGCmSUkowGZf4XcXqkQ4W7s8KBqW8Omddx6pPpudqgXR4E1WX7g VWAFtsMITorv63fYapw/PP3tv8bf3K7sXNdq8=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; b=Wo2A/mf3Ee59cYiCsuG8UtcsD5YNcuRz6p5D+PdOjUClM5852VdJPD+z/YB6vowq0T rgCUpW4L5jVd/RwsFT8ws1sZnfW9qt083vXMw5hptHPEq5mRn2nBjek9RCJh4CKIYoMM PSwj+/jS5qi4XgJSa04d4ojUh4envPKSJ1FEA=
- In-reply-to: <201010201254.41366.bgmilne@staff.telkomsa.net>
- References: <804818.10405.qm@web111917.mail.gq1.yahoo.com> <201010201254.41366.bgmilne@staff.telkomsa.net>
On Wed, Oct 20, 2010 at 7:54 AM, Buchan Milne
<bgmilne@staff.telkomsa.net> wrote:
> Assuming you didn't install from source, consult whoever provided you with
> OpenLDAP without a slapd.conf.
I'm guessing that's Canonical; the slapd package shipped for Ubuntu
has no slapd.conf, just a slapd.d/cn=config tree. Maybe they jumped
the gun a bit, but I've seen lots of (at least unofficial) mentions
that the slapd.conf style is outdated and back-config is the way to
go. Which makes using slapd.conf for a brand new installation feel
unwise. Old-fashioned, at best. I seem to recall reading as much in
the documentation somewhere, too, but I won't swear to it.
However, the new hotness is not, as far as I can tell,
well-documented. Things like slapd-ldap(5)'s CONFIGURATION section
say absolutely nothing about back-config; I had to read the source
code to find the mapping from configuration parameters (like
"acl-authcDN") to LDAP attributes (like "olcDbACLAuthcDN"). So,
currently, it seems the easiest way to create a back-config is to
write a slapd.conf and then convert it with slaptest.
All of which is bound to leave the beginning openldap admin a tiny bit
confused. What's considered best practice right now for new
installs?
--
Mark J. Reed <markjreed@gmail.com>