The directory service is also a database system, except that the database is a tree-like structure, not a relational database that is commonly used. The main difference between a directory service and a relational database is that both allow access to the stored data, but the directory is primarily used for reading, its query is highly efficient, and the relational database is designed for read and write.
LDAP is a Lightweight directory service, and directory services are primarily designed to address account management issues, such as network logon, e-mail service,FTP service,WEB Service , agency services and office automation, etc. , because a variety of application systems are based on different developers, each system has its own authentication method, not good unified management.
The specific configuration process is as follows:
1. Ensure that the 389 Port of the firewall in your computer shuts down the linux security subsystem
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M02/6F/4D/wKiom1WXw1OxbYqcAADMtX9iAnQ859.jpg "style=" float: none; "title=" 1.png "alt=" Wkiom1wxw1oxbyqcaadmtx9ianq859.jpg "/>
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M00/6F/4B/wKioL1WXxR2ybs4GAAB8_X2R8sY859.jpg "style=" float: none; "title=" 2.png "alt=" Wkiol1wxxr2ybs4gaab8_x2r8sy859.jpg "/>
2. Installing OpenLDAP and db4 software
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M00/6F/4D/wKiom1WXw1OQj1Q8AAAqpREE1YY871.jpg "style=" float: none; "title=" 3.png "alt=" Wkiom1wxw1oqj1q8aaaqpree1yy871.jpg "/>
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M01/6F/4B/wKioL1WXxR3CEnR6AAAl7ALINyw976.jpg "style=" float: none; "title=" 4.png "alt=" Wkiol1wxxr3cenr6aaal7alinyw976.jpg "/>
3. You can do this if you want to use the admin password for redaction. (Copy the ciphertext string)
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M01/6F/4B/wKioL1WXxSyhmnOiAAF3juFVq3o249.jpg "style=" float: none; "title=" 5.png "alt=" Wkiol1wxxsyhmnoiaaf3jufvq3o249.jpg "/>
4. Modify The openldap Master profile
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M01/6F/4D/wKiom1WXw2Ohk6-UAAAoGolvq00864.jpg "style=" float: none; "title=" 6.png "alt=" Wkiom1wxw2ohk6-uaaaogolvq00864.jpg "/>
Where ROOTPW secret for the clear-text management password, can not add encryption text, directly use it, note:rootpw and secret in the middle for the tab key is separated, and the ROOTPW cipher is added.
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M02/6F/4B/wKioL1WXxS2wNG_CAAGVKb5pxJc186.jpg "style=" float: none; "title=" 7.png "alt=" Wkiol1wxxs2wng_caagvkb5pxjc186.jpg "/>
5. copy Change db library
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M02/6F/4D/wKiom1WXw2PzvV9vAABaU08ezZ4541.jpg "style=" float: none; "title=" 8.png "alt=" Wkiom1wxw2pzvv9vaabau08ezz4541.jpg "/>
6. granting LDAP System user Rights
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M00/6F/4B/wKioL1WXxT3AHxfFAABiFyvYYf0420.jpg "style=" float: none; "title=" 9.png "alt=" Wkiol1wxxt3ahxffaabifyvyyf0420.jpg "/>
7. Restart the service and set the boot to start automatically
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M01/6F/4D/wKiom1WXw3STEfWiAACbjG1rQ-0619.jpg "style=" float: none; "title=" 10.png "alt=" Wkiom1wxw3stefwiaacbjg1rq-0619.jpg "/>
8. Use the migrationtoos tool to create an LDIF file and import it into the directory, modify the configuration file
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M02/6F/4B/wKioL1WXxT6TrZOJAAC2pzR8eK4611.jpg "style=" float: none; "title=" 11.png "alt=" Wkiol1wxxt6trzojaac2pzr8ek4611.jpg "/>
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M00/6F/4D/wKiom1WXw3Tyj9lMAACRYmNG5rM747.jpg "style=" float: none; "title=" 12.png "alt=" Wkiom1wxw3tyj9lmaacrymng5rm747.jpg "/>
9. Create an LDIF file and upload it in the OpenLDAP library
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M02/6F/4D/wKiom1WXw3TQUu1PAADIAQ8jRGQ047.jpg "style=" float: none; "title=" 13.png "alt=" Wkiom1wxw3tquu1paadiaq8jrgq047.jpg "/>
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M01/6F/4B/wKioL1WXxT7BZ74TAAD7sv5pi5Y089.jpg "style=" float: none; "title=" 14.png "alt=" Wkiol1wxxt7bz74taad7sv5pi5y089.jpg "/>
The above interface indicates that the data has been successfully imported into LDAP,
About LDAP specific commands, and syntax in this does not emphasize
The above is linux5.5 OPENLDAP the specific configuration process, if someone wants to install linux6.0 and above version of OpenLDAP, I will give you a follow-up, 6.0 system on the OPENLDAP configuration will and 5.5 have some discrepancy.
redhat5.5 OPENLDAP Server Configuration Setup