Manualshelf

Datasheet

ManualsBrandsNovell ManualsSoftware00662644465449-OEM
511512513514515516517518519520
“main” (Installation and Administration) 2004/6/25 13:29 page 490 #516
i
i
i
i
i
i
i
i
The option -b determines the search base — the section of the tree
within which the search should be performed. In the current case, this is
dc=suse,dc=de. To perform a more finely-grained search in specific sub-
sections of the LDAP directory (for instance, only within the devel depart-
ment), pass this section to ldapsearch with -b. -x requests activation of
simple authentication. (objectClass=*) declares that all objects con-
tained in the directory should be read. This command option can be used
after the creation of a new directory tree to verify that all entries have been
recorded correctly and the server responds as desired. More information
about the use of ldapsearch can be found in the corresponding man page
(man ldapsearch).
Deleting Data from an LDAP Directory
Delete unwanted entries with ldapdelete. The syntax is similar to that of
the commands described above. To delete, for example, the complete entry
for Tux Linux, issue the following command:
ldapdelete -x -D cn=admin,dc=suse,dc=de -W cn=Tux \
Linux,ou=devel,dc=suse,dc=de
21.8.5 LDAP Server Configuration with YaST
To set up an LDAP server, you can also use YaST. Such a server not only
can handle user account data, but also manage other information, such as
the configuration of mail, DNS, and DHCP servers. Setting up the server
for these purposes forms part of the installation procedure. Start the YaST
module with ‘Network Services’ ‘LDAP Server’.
In the dialog that opens, decide whether the LDAP server should be started
during boot. Selecting ‘Configure’ then takes you to the actual configura-
tion dialogs. See Figure 21.17 on the facing page.
In the left part of the window, see a tree view with which to select the
configurable features of the LDAP server. They include the ‘Global Set-
tings’ (‘Log Level Settings’, ‘Allow Settings’, and ‘TLS Settings’) and the
‘Databases’. The right part of the window displays the configuration dialog
for the currently selected item in the tree.
Selecting ‘Log Level Settings’ allows you to configure the degree of logging
activity (verbosity) of the LDAP server. From the predefined list, select or
deselect the logging options according to your needs. The more options are
enabled, the larger your log files grow.
490
21.8. LDAP — A Directory Service