1.下載安裝OpenLDAP版本
C:\Users\Administrator>slapd -V
OpenLDAP 2.4.42 Standalone LDAP Server (slapd)服務器
2.安裝過程當中,所有用默認的操做執行便可。app
3.修改OpenLDAP文件以下:工具
# MDB Backend configuration file
# See slapd.conf(5) for details on configuration options.
# This file should NOT be world readable.
ucdata-path ./ucdata
include ./schema/core.schema
include ./schema/cosine.schema
include ./schema/nis.schema
include ./schema/inetorgperson.schema
include ./schema/openldap.schema
include ./schema/dyngroup.schemaui
pidfile ./run/slapd.pid
argsfile ./run/slapd.args加密
# Enable TLS if port is defined for ldapsspa
TLSVerifyClient never
TLSCipherSuite HIGH:MEDIUM:-SSLv2
TLSCertificateFile ./secure/certs/server.pem
TLSCertificateKeyFile ./secure/certs/server.pem
TLSCACertificateFile ./secure/certs/server.pemserver
#######################################################################
# mdb database definitions
#######################################################################ip
database mdb
suffix "dc=maxcrc,dc=com"
rootdn "cn=Manager,dc=maxcrc,dc=com"
# Cleartext passwords, especially for the rootdn, should
# be avoid. See slappasswd(8) and slapd.conf(5) for details.
# Use of strong authentication encouraged.
rootpw {SSHA}drJjDix6yL/v4cyZid5ADT/ej+RcI0RSci
# The database directory MUST exist prior to running slapd AND
# should only be accessible by the slapd and slap tools.
# Mode 700 recommended.
directory ./data
searchstack 20
# Indices to maintain
index mail pres,eq
index objectclass pres
index default eq,sub
index sn eq,sub,subinitial
index telephonenumber
index cn
域名
說明:suffix:支持的域後綴,"dc=maxcrc,dc=com",表示支持maxcrc與com的域名,rootdn :此OpenLDAP的根域。可根據本身的需求修改,rootpw:管理員密碼:默認值secret,默認基於{SSHA}加密
能夠根據:
C:\Users\Administrator>slappasswd
New password: 123
Re-enter new password: 123
{SSHA}2e49d0L/XomzoVsO+VuWQbC5qixCdKK/
命令修改:出現上面信息,表示修改爲功。
2經過客戶端工具鏈接:
鏈接工具:ldapbrowser
安裝打開後,它會連上一個默認的internet public brower服務器。
咱們須要創建鏈接本身主機的openLADP服務器目錄:
1.1 file》新建:
1.2 選根本身的目錄
1.3 填寫完整的驗證信息
下一步便可完成openLADP鏈接與查詢。
也能夠使用LdapAdmin.exe鏈接操做:
鏈接操做相似上面。