windows環境下OpenLDAP安裝與客戶端鏈接配置

時間 2019-12-07

標籤 windows 環境 openldap 安裝客戶端鏈接配置欄目 Windows 简体版

原文原文鏈接

1.下載安裝OpenLDAP版本
C:\Users\Administrator>slapd -V
OpenLDAP 2.4.42 Standalone LDAP Server (slapd)服務器

2.安裝過程當中，所有用默認的操做執行便可。app

3.修改OpenLDAP文件以下：工具

# MDB Backend configuration file
# See slapd.conf(5) for details on configuration options.
# This file should NOT be world readable.
ucdata-path   ./ucdata
include       ./schema/core.schema
include       ./schema/cosine.schema
include       ./schema/nis.schema
include       ./schema/inetorgperson.schema
include       ./schema/openldap.schema
include       ./schema/dyngroup.schemaui

pidfile ./run/slapd.pid
argsfile ./run/slapd.args加密

# Enable TLS if port is defined for ldapsspa

TLSVerifyClient never
TLSCipherSuite HIGH:MEDIUM:-SSLv2
TLSCertificateFile ./secure/certs/server.pem
TLSCertificateKeyFile ./secure/certs/server.pem
TLSCACertificateFile ./secure/certs/server.pemserver

#######################################################################
# mdb database definitions
#######################################################################ip

database   mdb
suffix       "dc=maxcrc,dc=com"
rootdn       "cn=Manager,dc=maxcrc,dc=com"
# Cleartext passwords, especially for the rootdn, should
# be avoid. See slappasswd(8) and slapd.conf(5) for details.
# Use of strong authentication encouraged.
rootpw {SSHA}drJjDix6yL/v4cyZid5ADT/ej+RcI0RSci

# The database directory MUST exist prior to running slapd AND
# should only be accessible by the slapd and slap tools.
# Mode 700 recommended.
directory ./data
searchstack 20
# Indices to maintain
index mail pres,eq
index objectclass pres
index default eq,sub
index sn eq,sub,subinitial
index telephonenumber
index cn
域名

說明：suffix:支持的域後綴，"dc=maxcrc,dc=com"，表示支持maxcrc與com的域名，rootdn ：此OpenLDAP的根域。可根據本身的需求修改，rootpw：管理員密碼：默認值secret，默認基於{SSHA}加密

能夠根據：

C:\Users\Administrator>slappasswd
New password: 123
Re-enter new password: 123
{SSHA}2e49d0L/XomzoVsO+VuWQbC5qixCdKK/

命令修改：出現上面信息，表示修改爲功。

2經過客戶端工具鏈接：

鏈接工具：ldapbrowser