Data Center Trends Newsletter DevOps, virtualization, the hybrid cloud, storage, and operational efficiency are just some of the data center topics we'll highlight. Delivered Mondays and Wednesdays Sign up today. Editor's Picks. The best programming languages to learn in Check for Log4j vulnerabilities with this simple-to-use script.
TasksBoard is the kanban interface for Google Tasks you've been waiting for. Paging Zefram Cochrane: Humans have figured out how to make a warp bubble. Show Comments. Hide Comments. My Profile Log out. Join Discussion. During the installation, you will be asked to select and confirm an administrator password for LDAP. The reason for this is that while the package has the ability to ask a lot of important configuration questions, these are skipped over in the installation process.
We can gain access to all of the prompts though by telling our system to reconfigure the package:. There are quite a few new questions that will be asked as you go through this process. Although it is very possible to administer LDAP through the command line, most users will find it easier to use a web interface. This should install the administration interface, enable the necessary Apache virtual hosts files, and reload Apache. The web server is now configured to serve your application, but we will make some additional changes.
We need to configure phpLDAPadmin to use the domain schema we configured for LDAP, and we are also going to make some adjustments to secure our configuration a little bit. Now that the package is installed, we need to configure a few things so that it can connect with the LDAP directory structure that was created during the OpenLDAP configuration stage.
In this file, we need to add the configuration details that we set up for our LDAP server. This parameter should reflect the way you plan on accessing the web interface:. Remember, in our example we selected test. We need to translate this into LDAP syntax by replacing each domain component everything not a dot into the value of a dc specification. All this means is that instead of writing test.
We should find the parameter that sets the server base parameter and use the format we just discussed to reference the domain we decided on:. This is correct. We just need to adjust the dc portions again, just as we did above:. The last thing that we need to adjust is a setting that control the visibility of warning messages.
By default phpLDAPadmin will throw quite a few annoying warning messages in its web interface about the template files that have no impact on the functionality. This is the last thing that we need to adjust. You can save and close the file when you are finished. We just need to secure the external connection to our browser when we connect. To do this, we just need to set up a self-signed SSL certificate that our server can use.
This will not help us validate the identity of the server, but it will allow us to encrypt our messages. The OpenSSL packages should be installed on your system by default. First, we should create a directory to hold our certificate and key:. You will have to answer some questions in order for the utility to fill out the fields in the certificate correctly. The only one that really matters is the prompt that says Common Name e.
We also want to password protect our phpLDAPadmin location. Even though phpLDAPadmin has password authentication, this will provide an extra level of protection. Now that you have the utility available, you can create a password file that will contain a username that you choose and the associated hashed password. Create the file and specify the username you want to use by typing:.
This will enable the module, allowing us to use it. We still need to configure Apache to take advantage of this though. Currently, Apache is reading a file called default. This is the place where we need to decide on the URL location where we want to access our interface. We need to modify the line that specifies the Alias. When you are finished, it should look like this:.
Next, we need to modify our current Virtual Hosts file. We will use these same certificates to provide secure LDAP connections as well. Either way, you should be able to complete the tutorial with minimal changes, mostly regarding the paths or filenames of the certificates. Our first step is to install the LDAP server and some associated utilities. Log into your server. During the installation, you will be asked to select and confirm an administrator password for LDAP. The slapd package has the ability to ask a lot of important configuration questions, but by default they are skipped over in the installation process.
We gain access to all of the prompts by telling our system to reconfigure the package:. There are quite a few new questions to answer in this process. We will be accepting most of the defaults. At this point, your LDAP server is configured and running. Open up the LDAP port on your firewall so external clients can connect:.
This means the server is running and answering queries. Although it is very possible to administer LDAP through the command line, most users will find it easier to use a web interface. You can install it with apt-get :.
This will install the application, enable the necessary Apache configurations, and reload Apache. The web server is now configured to serve the application, but we need to make some additional changes. Your cursor will be placed on the correct line. This line is a display name for your LDAP server, which the web interface uses for headers and messages about the server.
Choose anything appropriate here:. This is based on the value we typed in when reconfiguring the slapd package. In our example we selected example. This option pre-populates the admin login details in the web interface. The last thing that we need to adjust is a setting that controls the visibility of some phpLDAPadmin warning messages.
By default the application will show quite a few warning messages about template files. These have no impact on our current use of the software.
This is the last thing that we need to adjust. Save and close the file to finish. Having made the necessary configuration changes to phpLDAPadmin, we can now begin to use it.
Navigate to the application in your web browser. Be sure to substitute your domain for the highlighted area below:. The phpLDAPadmin landing page will load.
0コメント