CentOS Directory Server

Http://www.aliyun.com/zixun/content/3_12_517262.htmlCentOS System installation directory Server 8.1 Method of operation Published: 2014-12-19 Updated: 2014-12-26 Source: Network Annatuoli
Keywords: Directory CentOS operation method

CentOS is one of the Linux distributions and is compiled from Red Hat Enterprise Linux with source code released under open source rules. Because of the same source code, some servers that require a high degree of stability are used with CentOS instead of the commercial version of Red Hat Enterprise Linux. The difference between the two is that CentOS does not contain closed source code software.

CentOS, we have a lot of people calling it a community enterprise operating system, no matter what you call it, it is a distribution version of Linux. CentOS is not a brand new Linux distribution, and if you talk about the name Redhat, you all seem to have heard of the enterprise version of the Redhat family, which is red Hat Enterprise Linux (hereafter called Rhel), CentOS is the clone version of this Rhel, which is a Linux distribution used by many enterprises and needs to be paid to Redhat to be used, and to be paid for services and http://www.aliyun.com/zixun/aggregation /12867.html "> Technical support and version upgrades. This CentOS can build Linux system environment like Rehl, but do not need to pay redhat any fees, also get no paid technical support and upgrade service.

The CentOS project was one of the Red Hat Rebuilders in 2003, after Red Hat decided not to provide free technical support and product certification.

Installing CentOS Directory Server 8.1 on the CentOS 5.5 platform

First, the root user executes:

Yum Install Centos-ds

Then modify the CentOS environment parameters:

1. Edit the/etc/sysctl.conf, plus the following two lines:

net.ipv4.tcp_keepalive_time=600

Fs.file-max = 64000

2. Edit the/etc/security/limits.conf, plus the following two lines:

# for Directory Server

*-Nofile 8192

3. Edit the/etc/pam.d/system-auth, plus the following two lines:

# for Directory Server

Session required/lib/security/$ISA/pam_limits.so

Finally, perform the Setup-ds-admin.pl,directory server installation complete.

CentOS Directory Server is a recompiled version of Redhat diectory server. In addition to the general LDAP server-owned features, the most special feature is the ability to synchronize with AD, in addition to synchronizing users and groups of information, you can also synchronize the user's password. This is a feature that many LDAP software does not have. Similar to IBM Tivoli Directory Server, the ability to synchronize user information but not synchronize passwords. Sun also has similar software. But they're not for free.

To synchronize passwords with AD, you must enable SSL. First, make sure that the AD domain controller is SSL-enabled, and then enable SSL for directory server. The process is as follows:

First,for SSL issue, install a MicroSoft CA server (Windows 2003 + IIS + CA).

1. Generate a certificate request.

A. In the Directory Server Console, select the "Tasks" tab, and click "Manage Certificates".

B. Select the "Server Certs" tab, and click the "Request" button.

C. Fill in the certificate information, and save the certificate request to a file.

2. Apply a server certificate (Base encoded) on your Microsoft CA serve.

B. Download & Save the server Certificate (Base encoded) from your Microsoft CA serve.

3. Install the new certificate.

A. In the Directory Server Console, select the Tasks tab, and click Manage Certificates.

B. Select The Server Certs tab, and click Install.

C. Paste in the certificate, and set the password for the token database.

4. Install the CA certificate of your Microsoft CA Server & AD root CA.

A. Download and save the CA certificate from your Microsoft CA server, and copy the AD root CA file to CentOS.

B. In the Directory Server Console, select the Tasks tab, and click Manage Certificates.

C. Go to the CA Certs tab, and click Install.

D. Paste in the CA certificate or the downloaded file, and go through the certificate

CentOS Directory Server