Initial configuration

# Make sure you edit or add these directives after the first 'database' directive.

suffix          "dc=local"
directory       "/var/lib/ldap"
rootdn          "cn=admin,dc=local"
rootpw          {SSHA}mysecretpassword
access to attrs=userPassword,shadowLastChange
        by dn="cn=admin,dc=local" write
        by anonymous auth
        by self write
        by * none
BASE dc=local
URI ldap://localhost

Initial Organisation

dn: dc=local
objectClass: dcObject
objectClass: organizationalUnit
dc: local
ou: My local Organisation

dn: cn=admin,dc=local
objectClass: organizationalRole
cn: admin
description: LDAP administrator
$ sudo ldapadd -x -W -D cn=admin,dc=local -f base.ldif
$ sudo /etc/init.d/slapd stop
$ sudo rm -rf /var/lib/ldap/*
$ sudo slapadd -l base.ldif 
$ sudo chown -R openldap:openldap /var/lib/ldap
$ sudo /etc/init.d/slapd start
$ ldapsearch -x -LLL -b "dc=local"

# -x = no sasl auth
# -LLL = no ldif infos

Upgrade to Ubuntu 8.04 Server

slurpd is obsolete; replicas must be reconfigured by hand ││ ││ One or more slurpd "replica" options were found in your slapd config ││ when upgrading. Because slurpd is obsolete beginning with OpenLDAP 2.4, ││ you will need to migrate your replicas to use the syncrepl protocol ││ instead. ││ ││ The conversion from slurpd to the pull-based syncrepl protocol cannot be ││ done automatically and you will need to configure your replica servers ││ by hand. Please see ││ for details.



Ubuntu Client


MacOSX as Client


Replication Master/Slave


Use SASL encrytion



Tools for LDAP configuration