Datasheet
“main” (Installation and Administration) — 2004/6/25 — 13:29 — page 482 — #508
i
i
i
i
i
i
i
i
Line 7, starting with MUST, lists all attribute types that must be used in con-
junction with an object of the type organizationalUnit. Line 8, starting
with MAY, lists all attribute types that are permitted in conjunction with this
object class.
A very good introduction to the use of schemes can be found in the docu-
mentation of OpenLDAP. When installed, find it in /usr/share/doc/
packages/openldap2/admin-guide/index.html.
21.8.3 Server Configuration with slapd.conf
Your installed system contains a complete configuration file for your LDAP
server at /etc/openldap/slapd.conf. The single entries are briefly
described here and necessary adjustments are explained. Entries prefixed
with a hash (#) are inactive. This comment character must be removed to
activate them.
Global Directives in slapd.conf
Example 21.18: slapd.conf: Include Directive for Schemes
include /etc/openldap/schema/core.schema
include /etc/openldap/schema/inetorgperson.schema
This first directive in slapd.conf, shown in Example 21.18, speci-
fies the scheme by which the LDAP directory is organized. The entry
core.schema is compulsory. Additionally required schemes are ap-
pended to this directive (inetorgperson.schema has been added here
as an example). More available schemes can be found in the directory
/etc/openldap/schema. For replacing NIS with an analogous LDAP
service, include the two schemes rfc2307.schema and cosine.schema.
Information can be found in the included OpenLDAP documentation.
Example 21.19: slapd.conf: pidfile and argsfile
pidfile /var/run/slapd/slapd.pid
argsfile /var/run/slapd/slapd.args
These two files contain the PID (process ID) and some of the arguments
with which the slapd process is started. There is no need for modifications
here.
482
21.8. LDAP — A Directory Service