Install 389 Directory Server CentOS

Install 389 Directory Server CentOS

Install 389 Directory Server CentOS


389 Directory server is a wonderful drop-in replacement for OpenLDAP, and is extremely easy to install and configure. A few really important features of 389 directory server is multi-master replication, a unified admin console, password policies, and the capability of sync with Active Directory. This makes 389 directory server a premium choice for Linux Administrators.
Login, and su to root

now enable the EPEL Repo 




now install the REMI Repo


edit /etc/hosts to include your hostname/ipaddress
now edit the syscontrol configuration

add lines 44-47

now edit the security limits configuration

add lines 50 and 51 to the end of the configuration file

now edit /etc/profile

add line 79

create a local service account to run 389 as

set password

now install the 389 directory server packages

run the installer for 389

choose setup type 2

for the next step type "servername.domain.local" or whatever your scheme is,w e are going with 389.domain.local
set the system user as ldapadmin

fill out as follows

hit yes to setup the server

now make sure the necessary services start on startup


now in order to launch the admin console, we need to have X installed (or you can install on a remote server, but for now let's install on the master LDAP server)


one all 400 or so packages are done installing, reboot
once rebooted, verify that you can launch the 389 console via ssh X Session

you should be prompted with a login screen



enter your credentials as follows:


here's the console window


 from here you are ready to start adding users/groups to LDAP under "Directory Server" –> Directory –> domain
Here's a few more steps you may want to know about:
  • To Configure MultiMaster Replication click here
  • To Join Client to 389 Directory Server click here
  • To Sync Active Directory With 389 Directory Server click here
  • To Configure TLS/SSL Secure LDAP click here
  • To Configure TLS/SSL Client click here
  • To Configure a Password Policy/Lockout, click here
  • To add the Samba Schema to 389 LDAP click here
  • To disable Anonymous LDAP Bind, click here
  • To Authenticate Windows 7 Against LDAP click here
  • To Authenticate Windows 7 using TLS/SSL click here
  • To configure your LDAP server as an internal DNS server click here
  • To configure your LDAP server as a DHCP server click here
  • To configure your LDAP server as a NTP server click here

Comments

Post a Comment

Popular posts from this blog

RHEL 7

RHEL 7 ..... ************************RHCSA Version 7 **************** Initial configuration.txt: *you have been provided a virtual box named as serverX.example.com (hint:where X is your domain number) * password for both virtual machine should be "Postroll" *serverX.example.com provided with ip=172.25.X.10/255.255.255.0 *serverX.example.com are provided with gateway 172.25.254.254 & example.com dns domain with the IP: 172.25.254.254 gateway 172.25.0.1 netmask 255.255.255.0 nameserver 172.25.254.250 1) configure your systems that should be running Enforcing 2) create a new 100MB Physical partition mounted under /Gluster (Note because partition sizes are seldom exactly what is specified when they are created, any thing within the range of 70MB to 120MB is acceptable) 3) create a new 150MB swap partition f/s. (Note because partition sizes are seldom exactly what is specified when they are created, any thing within the range of 13
Read more

Configure TLS SSL 389 Directory Server CentOS

Image
389 Directory server is an amazing MultiMaster LDAP solution. Out of the box 389 is not configured to use TLS/SSL, so we are going to walk through the setup process. Please note, that we are using this as a test, so we are using a self-signed certificate, but the directions should work for both scenarios. login, and su to root Generate the Self-Signed Certificate: change to the necessary directory, and setup a few files for the CA now generate the key/certificate setup your certificate as appropriate set permissions on the cert key now we need to make sure certificate matching is disabled (unless you are using a full cert) modify lines 85-88 as follows: Generate and Self-Sign Certificate launch the 389-console open the directory server you were just working on, and click "Manage Certificates" Servername –> Directory Server –> Manage Certificates set, and REMEMBER
Read more

How to configure apache server in linux

Image
Apache is the most popular, secure, robust, reliable and powerful web server. Apache is used by more websites than all other web servers combined. RHEL6 includes Apache version 2.2 RHCE6 Exam objectives covered in this article HTTP/HTTPS Configure a virtual host. Configure private directories. Deploy a basic CGI application. Configure group-managed content. In this tutorial I will use three systems Server, linuxclient and windowclient from our LAB environment. I will configure Apache Web Server on Server system and test from inuxclient and windowclient system. If you want to check the network topology used in this article please check following article. Lab set up for RHCE 6 practice Installation of Apache Two packages are required for Apache server httpd mod_ssl elinks httpd package install Apache web server. mod_ssl is the additional package which required to create secure websites elinks is the additional package for text based we
Read more