UbuntuLDAP configuration instance

Summary: Because LDAP needs to be configured on Ubuntu, we first search for it using Ubuntu and LDAP as keywords, and also browse the OpenLDAP official documentation. After reading a large number of documents, I found that the configuration is no longer saved in the. conf file after javastuserver10.04. Most of the information collected earlier is outdated. I should first read the official Ubuntu documentation. Install the latest ttuserver10.10 version according to the official documentation. Summary:

Because LDAP needs to be configured on Ubuntu, we first use Ubuntu and LDAP as keywords to search, and also browsed the OpenLDAP official documentation. After reading a large number of documents, I found that the configuration is no longer saved in the. conf file after Ubuntu Server 10.04. Most of the information collected previously is outdated.Read the official Ubuntu documentation first..

Later, install Ubuntu Server 10.10 according to the official documentation. It is found that the official documentation of Ubuntu Server 10.10 only copies 10.04, which contains errors and may cause configuration failure. RecognizeServer version should also be LTS version with long-term support.

Later, you can re-configure LDAP on Ubuntu 10.04 LTS, which may be due to errors during configuration and cannot be completed successfully. BecauseUbuntu documentation involves how to troubleshoot LDAP errors.(Or I may not be able to search enough). I once wanted to give up, and I was still confused about the Ubuntu release. In the end, I had to re-install the software and follow the instructions to complete the configuration.

The details are as follows:

1. Ubuntu 10.04 OpenLDAP no longer uses the conf configuration file

OpenLDAP of Ubuntu has always changed. It should start from 10.04. OpenLDAP no longer uses the conf configuration file, but saves the configuration information as LDAP records. The description in the Ubuntu 10.04 OpenLDAP Server document is as follows:

OpenLDAP uses a separate directory which contains the cn = config Directory Information Tree (DIT ). the cn = config DIT is used to dynamically configure the slapd daemon, allowing the modification of schema definitions, indexes, ACLs, etc without stopping the service.

There are many documents on how to configure OpenLDAP for Ubuntu on the network, but most of them are based on versions earlier than 10.04. They describe how to modify the conf configuration file, which has expired.

So,It will always be a good habit to start from the official documentation.

2. the OpenLDAP section in Ubuntu 10.10 official documentation is currently incorrect (2010-03 ).

The configuration is started on the latest Ubuntu Server 10.10. However, the Ubuntu 10.10 OpenLDAP Server document (2010-03) has an error. The following error occurs when backend.example.com. ldif is added:

Ldap_add: Other (e.g., implementation specific) error (80)
Additional info: Handler exited with 1

After some searches, we found the solution. The document is incorrect.Back_hdbChangeBack_hdb.la.

The following error occurs when frontend.example.com. ldif is added:

Ldap_bind invalid credentials (49)

This time we were not so lucky. There were very few results returned by the search, but none of them were related to 10.10.

Comparing the 10.10 and 10.04 documents, we found that they are exactly the same. After the successful configuration of OpenLDAP on 10.04, it means that the OpenLDAP program on 10.10 has changed again, but even the official documents have not followed, and there will be fewer other documents.

Therefore, such as the server operating systemChoose not the latest technology, but choose stable. New (a period of time before it becomes new) often means instability and less support information.

3. Ubuntu official documentation is still slightly inadequate

Considering that 10.10 cannot be configured successfully, considering that 10.04 is an LTS version, we decided to configure it on 10.04.

The OpenLDAP Server can be successfully configured according to the 10.04 documentation. However, if an error occurs due to input errors during the configuration process, the document does not prompt how to troubleshoot the error, the results returned by searching for error messages are also very small. If an error occurs, you have to start from scratch. (Maybe because of my search capability)

Therefore, you must be careful when entering the error, and strive to add the configuration information step by step. Or, like me, I use virtual machines and have snapshot backups.

I must admit that the above experiences may affect my confidence in the Ubuntu distribution Server,Comparing the advantages and disadvantages of Linux releases is not easy or meaningful.Since there is no time to master everythingStick to the familiarUbuntu,