This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision Next revision Both sides next revision | ||
установка_и_настройка_openldap [2022/05/17 12:44] val [Включение TLS] |
установка_и_настройка_openldap [2022/05/17 13:14] val |
||
---|---|---|---|
Line 10: | Line 10: | ||
Administrative password: secret | Administrative password: secret | ||
- | |||
- | root@server:~# less /etc/default/slapd | ||
root@server:~# ldapsearch -x -b "dc=corpX,dc=un" | root@server:~# ldapsearch -x -b "dc=corpX,dc=un" | ||
Line 17: | Line 15: | ||
===== Отключение анонимного доступа ===== | ===== Отключение анонимного доступа ===== | ||
+ | |||
+ | * [[https://serverfault.com/questions/63916/how-to-disable-anonymous-access-on-ldap|How to disable anonymous access on LDAP]] | ||
===== Включение TLS ===== | ===== Включение TLS ===== | ||
* [[https://ubuntu.com/server/docs/service-ldap-with-tls|LDAP & TLS]] | * [[https://ubuntu.com/server/docs/service-ldap-with-tls|LDAP & TLS]] | ||
+ | * [[Пакет OpenSSL#Создание центра сертификации]] | ||
<code> | <code> | ||
Line 41: | Line 42: | ||
# ldapmodify -Y EXTERNAL -H ldapi:/// -f certinfo.ldif | # ldapmodify -Y EXTERNAL -H ldapi:/// -f certinfo.ldif | ||
+ | root@server:~# cat /etc/default/slapd | ||
+ | </code><code> | ||
+ | ... | ||
+ | SLAPD_SERVICES="ldap://127.0.0.1:389/ ldaps:/// ldapi:///" | ||
+ | ... | ||
+ | </code><code> | ||
+ | # systemctl restart slapd.service | ||
</code> | </code> | ||
+ | |||
===== Дополнительные материалы ===== | ===== Дополнительные материалы ===== | ||