Ignore:
Timestamp:
Sep 28, 2010, 12:15:54 AM (14 years ago)
Author:
ezyang
Message:
More updates to LDAP instructions.
File:
1 edited

Legend:

Unmodified
Added
Removed
  • branches/fc13-dev/server/doc/install-ldap

    r1677 r1680  
    11To set up a new LDAP server:
    22
    3 - Install the RPM 389-ds-base with yum
     3- Install the RPM 389-ds-base with yum (these are installed by kickstart
     4  these days, so these two steps are probably not necessary)
    45  root# yum install -y 389-ds-base
     6  root# yum install -y policycoreutils-python
     7  root# yum install -y ldapvi
    58- We want to run the directory server as its own user, so create fedora-ds
    6   root# env NSS_NONLOCAL_IGNORE=1 useradd -r -d /var/lib/dirsrv fedora-ds
    7 - root# yum install -y policycoreutils-python
     9  root# useradd -r -d /var/lib/dirsrv fedora-ds
    810- Temporarily move away the existing slapd-scripts folder
    911  root# mv /etc/dirsrv/slapd-scripts{,.bak}
     
    1921  root# cp -R /etc/dirsrv/slapd-scripts.bak/{.svn,*} /etc/dirsrv/slapd-scripts
    2022  root# rm -Rf /etc/dirsrv/slapd-scripts.bak
    21 - yum install ldapvi
    22 - Check if dirsrv starts: /sbin/service dirsrv start
    23   then turn it back off: service dirsrv stop
     23- Turn dirsrv off: service dirsrv stop
    2424- Apply the following configuration changes.  If you're editing
    2525  dse.ldif, you don't want dirsrv to be on, otherwise it will
     
    173173       right now.
    174174
    175         ldapvi -b cn=\"dc=scripts,dc=mit,dc=edu\",cn=mapping\ tree,cn=config 
     175        ldapvi -b cn=\"dc=scripts,dc=mit,dc=edu\",cn=mapping\ tree,cn=config
    176176
    177177    2. Configure the server $SLAVE (this server) to accept $MASTER
     
    227227       it to replicate to $SLAVE.
    228228
     229       The last line runs the replication.  This is perhaps the most
     230       risky step of the process; see below for help debugging problems.
     231
    229232       WARNING: There is a known bug doing full updates from 1.2.6 to
    230233       1.2.6, see https://bugzilla.redhat.com/show_bug.cgi?id=637852
     
    239242nsDS5ReplicaPort: 389
    240243nsDS5ReplicaTransportInfo: LDAP
    241 nsDS5ReplicaBindDN:
    242 uid=ldap/$MASTER,ou=People,dc=scripts,dc=mit,dc=edu
     244nsDS5ReplicaBindDN: uid=ldap/$MASTER,ou=People,dc=scripts,dc=mit,dc=edu
    243245nsDS5ReplicaBindMethod: SASL/GSSAPI
    244246nsDS5ReplicaUpdateSchedule: "0000-2359 0123456"
    245247nsDS5ReplicaTimeout: 120
    246 
    247     4. Run the replication.  This is perhaps the most risky step of
    248     the process; see below for help debugging problems.
    249 
    250 # under cn="GSSAPI Replication to $SLAVE", cn=replica, cn="dc=scripts,dc=mit,dc=edu", cn=mapping tree, cn=config
    251248nsDS5BeginReplicaRefresh: start
    252249
Note: See TracChangeset for help on using the changeset viewer.