Manualshelf

Installation guide

ManualsBrandsPythonQ ManualsIndustrial248-8XX
261262263264265266267268269270
262 Chapter 18. Lightweight Directory Access Protocol (LDAP)
Tip
If you are using the slapadd command-line tool locally to populate the LDAP directory, using the
rootpw directive is not necessary.
18.4.2. The /etc/openldap/schema/ Directory
The /etc/openldap/schema/ directory holds LDAP definitions, previously located in the
slapd.at.conf and slapd.oc.conf files. All attribute syntax definitions and objectclass
definitions are now located in the different schema files. The various schema files are referenced in
/etc/openldap/slapd.conf using include lines, as shown in this example:
include /etc/openldap/schema/core.schema
include /etc/openldap/schema/cosine.schema
include /etc/openldap/schema/inetorgperson.schema
include /etc/openldap/schema/nis.schema
include /etc/openldap/schema/rfc822-MailMember.schema
include /etc/openldap/schema/autofs.schema
include /etc/openldap/schema/kerberosobject.schema
Caution
You should not modify any of the schema items defined in the schema files installed by OpenLDAP.
You can extend the schema used by OpenLDAP to support additional attribute types and object
classes using the default schema files as a guide. To do this, create a local.schema file in the
/etc/openldap/schema directory. Reference this new schema within slapd.conf by adding the
following line below your default include schema lines:
include /etc/openldap/schema/local.schema
Next, go about defining your new attribute types and object classes within the local.schema file.
Many organizations use existing attribute types and object classes from the schema files installed by
default and modify them for use in the local.schema file. This can help you to learn the schema
syntax while meeting the immediate needs of your organization.
Extending schema to match certain specialized requirements is quite involved and beyond the scope
of this chapter. Visit http://www.openldap.org/doc/admin/schema.html for information on writing new
schema files.
18.5. OpenLDAP Setup Overview
This section provides a quick overview for installing and configuring an OpenLDAP directory. For
more details, refer to the following URLs:
http://www.openldap.org/doc/admin/quickstart.html The Quick-Start Guide on the OpenLDAP
website.
http://www.redhat.com/mirrors/LDP/HOWTO/LDAP-HOWTO.html — The LDAP Linux HOWTO
from the Linux Documentation Project, mirrored on Red Hat’s website