OpenLDAP

Da Emigar.
Jump to navigation Jump to search

Password Policy

Per implementare il modulo di password policy:

  • caricare il modulo ppolicy
  • caricare lo schema di ppolicy
  • definire nel database la policy di defaultl
  • creare la policy di default nel dn definito nel punto 3
  • eventualmente creare altre policy
  • eventualmente definire policy diverse ad utenti diversi


Replica

mirror

slave

Relay

dn: cn=module,cn=config
cn: module
objectclass: olcModuleList
olcmoduleload: back_relay
olcmodulepath: /usr/lib64/openldap

dn: cn=module{0},cn=config
changetype: modify
add: olcModuleLoad
olcModuleLoad: rwm

dn: olcDatabase=relay,cn=config
objectClass: olcDatabaseConfig
objectClass: olcRelayConfig
olcDatabase: relay
olcSuffix: dc=it
olcAccess: to * by dn.base="gidNumber=0+uidNumber=0,cn=peercred,cn=extern
 al,cn=auth" manage by * read
olcAddContentAcl: FALSE
olcLastMod: TRUE
olcMaxDerefDepth: 15
olcReadOnly: FALSE
olcRootDN: cn=Manager,dc=it
olcRootPW:: xxxxxxxxxxxxxxxxxxxxxxxxxxx
olcSyncUseSubentry: FALSE
olcMonitoring: FALSE
olcRelay: dc=IT,dc=local

dn: olcOverlay=rwm,olcDatabase={3}relay,cn=config
objectClass: olcOverlayConfig
objectClass: olcRwmConfig
olcOverlay: rwm
olcRwmRewrite: rwm-suffixmassage "dc=IT" "dc=IT,dc=local"
olcRwmTFSupport: false
olcRwmNormalizeMapped: FALSE


Link

http://www.openldap.org

http://www.bind9.net/ldap/

http://www.firenze.linux.it/~piccardi/ldap/

http://www.kobold.it/ldap/

http://linuxwiki.riverworth.com/index.php/LDAP_Authentication

Estratto da "http://www.emigar.com/wiki/index.php?title=OpenLDAP&oldid=5446"