Community request: Real World OpenLDAP Deployments

List overview All Threads
Download

newer

older

hello

Samba failed to bind Ldap

Gavin Henry

27 Nov 2008 27 Nov '08

2:11 a.m.

Dear All,

I'd like to get some examples written up for

http://www.openldap.org/doc/admin24/appendix-deployments.html

If anyone is interested and allowed to share some information, I'd love to hear from you.

The more strange the setup the better!

Many thanks,

Gavin.

-- Kind Regards, Gavin Henry. T +44 (0) 1224 279484 M +44 (0) 7930 323266 F +44 (0) 1224 824887 E ghenry@suretecsystems.com Open Source. Open Solutions(tm). http://www.suretecsystems.com/ Suretec Systems is a limited company registered in Scotland. Registered number: SC258005. Registered office: 13 Whiteley Well Place, Inverurie, Aberdeenshire, AB51 4FP.

Show replies by date

Michael Zoet

27 Nov 27 Nov

2:52 a.m.

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

Gavin Henry schrieb:

...

Dear All,

I'd like to get some examples written up for

http://www.openldap.org/doc/admin24/appendix-deployments.html

If anyone is interested and allowed to share some information, I'd love to hear from you.

The more strange the setup the better!

With strange do you mean something similar like this:

Using Postfix with local & virtual domains and accessing them with Dovecot via IMAPs und POP3s using LDAP authentifications for the virtual mailboxes and using PAM for the local mboxes?

Perhaps then I can help but I can not share in depth details.

- -- Michael Zoet Webseite: http://zoet.de E-Mail: Michael.Zoet@michaelzoet.de Jabber: michazoet@jabber.org

...PGP SIGNATURE...

-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFJLnvrBvfZ5167qr8RAgPfAKDIu67SfKPcF++rLFHsgrLcnmfXGQCfSM+G zK12SLj73gf7PJLZUWOUdzE= =8SyB -----END PGP SIGNATURE-----

Dieter Kluenter

28 Nov 28 Nov

12:49 a.m.

Hi Gasvin,

Gavin Henry ghenry@suretecsystems.com writes:

...

Dear All,

I'd like to get some examples written up for

http://www.openldap.org/doc/admin24/appendix-deployments.html

If anyone is interested and allowed to share some information, I'd love to hear from you.

The more strange the setup the better!

This example is not strange but quite common, that is to integrate a HR or CRM system into a sort of meta directory.

moduleload back_relay.la moduleload back_sql.la moduleload rwm.la moduleload accesslog.la

database sql suffix "ou=customers" rootdn "cn=Manager,ou=customers" rootpw secret dbname customers dbuser manager dbpasswd secret has_ldapinfo_dn_ru no use_subtree_shortcut no

database relay suffix "ou=customers,o=myCompany relay ou=customers overlay rwm rwm-suffixmassage "ou=customers,o=myCompany" "ou=customers" subordinate

database hdb suffix "o=myCompany" rootdn "cn=manager,o=myCompany" rootpw secret

authz-policy to authz-regexp uid=(.*),cn=.*,cn=auth ldap:///o=myCompany??sub?uid=$1 authz-regexp gidNumber=(.*)\+uidNumber=(.*),cn=peercred,cn=external,cn=auth ldap:///o=myCompany??sub?(&(uidNumber=$1)(gidNumber=$2)) ...

overlay accesslog logdb cn=log logops writes logold (objectclass=evolutionperson) logoldattr mail cn sn logpurge 3+00:00 1+00:00

An other option is to connect to a HR or CRM system by means of back-perl or back-sock. This coould be vital if connection is made to a SAP system, as this can only be connected to via FTP.

-Dieter

-- Dieter Klünter | Systemberatung http://www.dpunkt.de/buecher/2104.html sip: +49.180.1555.7770535 GPG Key ID:8EF7B6C6 53°08'09,95"N 10°08'02,42"E

5839

Age (days ago)

5840

Last active (days ago)

openldap-technical@openldap.org

2 comments

3 participants

tags (0)

participants (3)

Dieter Kluenter
Gavin Henry
Michael Zoet