23
Administration
OpenLDAP ServerOpenLDAP Server InstallationOpenLDAP Server ConfigurationStarting the OpenLDAP Server
OpenLDAPisanOpensourceLDAPserverdesignedforUNIXplat forms.AWindowsversioncanbedownloadedfrom:
http://download.bergmans.us/openldap/openldap-2.2.29/openldap-2.2.29-db-4.3.29-openssl-0.9.8awin32_Setup.exe.
After downloading the program, launch the in staller, select your
language, accept the license and choose the target inst allation
directory. The default directory is:
c:\Program Files\OpenLDA P.
When the Select Components dialog box appear s, select install BDB-
tools and install OpenLDAP-slapd a s NT service, as shown in the
diagram:
The main OpenLDAP configuration file, slapd.conf, has to be
customized before launching the server. The modifications to the
configuration file will do the following:
• SpecifytheUnicodedatadirectory.Thedefaultis. /ucdata.
• ChoosetherequiredLDAPschemas.Thecoreschemais
mand ator y.
• CongurethepathfortheOpenLDAPpid and args star t up files.
The first contains the server pid, the second includes comm and line
arguments.
• Choosethedatabasetype.Thedefaultisbdb (Berkeley DB).
• Specifytheserversufx.Allentriesint hedirectorywillhavethis
suffix, which represents the root of the directory t ree. For example,
with suffix dc=tripplite,dc= com, the fully qualified name of all
entries in the database will end with dc =tripplite,dc=com.
To start the OpenLDAP server, run slapd (the OpenLDAP server
executable file) from the command line. slapd supports a numb er of
command line options, the most important opt ion is the d switch that
triggers debug information. For example, a command of slapd -d
256 would start OpenLDAP with a debug level of 256, as shown in
the following screenshot:
• Denethenameoftheadministratorentr yfortheserver(rootdn),
along with its password (rootpw). This is the server’s super user.
The rootdn name must match the suffix defined above. (Since all
entry names must end with the defined suffix, and the ro otdn is an
entr y.)
• Anexamplecongurationleisprovidedinthegure,below:
Note: For details about slapd options and t heir meanings, refer to the
OpenLDAP documentation .