Changes between Version 7 and Version 8 of ldapiam2018

Timestamp:

Sep 12, 2018, 11:00:43 AM (7 years ago)

Author:

admin

Comment:

--

ldapiam2018

@@ -1 +1 @@
 = Install the OpenLDAP Server on Ubuntu 18.04 LTS with eduPerson Schema =
 
-It is assumed that you have already install your IDP Ubuntu server with a public IP address and a Domain Name (//idp.YOUR-DOMAIN//). 
+It is assumed that you have already install your IDP Ubuntu server with a public IP address and a Domain Name (//idp.instXY.ac.lk//). 
 
 On your IDP server,
@@ -15 +15 @@
 Answer the prompts appropriately, using the information below as a starting point:
 * Omit OpenLDAP server configuration? '''No''' (we want an initial database and configuration)
-* DNS domain name: '''YOUR-DOMAIN''' (use the server's domain name, minus the hostname. This will be used to create the base entry for the information tree)
+* DNS domain name: '''instXY.ac.lk''' (use the server's domain name, minus the hostname. This will be used to create the base entry for the information tree)
 * Organization name: '''Your Institute''' (This will simply be added to the base entry as the name of your institute)
 * Administrator password: '''whatever you'd like'''
@@ -52 +52 @@
 {{{
 organization = "Name of your institution"
-cn = idp.YOUR-DOMAIN
+cn = idp.instXY.ac.lk
 tls_www_server
 encryption_key
@@ -117 +117 @@
 dn:cn=config
 changetype:modify
-add:olcTLSCACertificateFile
+replace:olcTLSCACertificateFile
 olcTLSCACertificateFile:/etc/ssl/certs/ca_server.pem
 -
-add:olcTLSCertificateFile
+replace:olcTLSCertificateFile
 olcTLSCertificateFile:/etc/ssl/certs/ldap_server.pem
 -
-add:olcTLSCertificateKeyFile
+replace:olcTLSCertificateKeyFile
 olcTLSCertificateKeyFile:/etc/ssl/private/ldap_server.key
 }}}
@@ -141 +141 @@
 sudo service slapd start
 }}}
-Your clients can now be configured to encrypt their connections to the server over the conventional 'ldap://ldap.YOUR-DOMAIN:389' port by using STARTTLS.
+Your clients can now be configured to encrypt their connections to the server over the conventional 'ldap://ldap.instXY.ac.lk:389' port by using STARTTLS.
 
 == Setting up the Client Machines ==
@@ -195 +195 @@
 Depending on your Institutes's Requirement, you may create group as follows:
 {{{
-dn: ou=People,dc=YOUR-DOMAIN,dc=ac,dc=lk
+dn: ou=People,dc=instXY,dc=ac,dc=lk
 objectClass: organizationalUnit
 objectClass: top
 ou: People
  
-dn: ou=Group,dc=YOUR-DOMAIN,dc=ac,dc=lk
+dn: ou=Group,dc=instXY,dc=ac,dc=lk
 objectClass: organizationalUnit
 objectClass: top
@@ -207 +207 @@
 
 # System Admin Staff Group
-dn:cn=adm,ou=Group,dc=YOUR-DOMAIN,dc=ac,dc=lk
+dn:cn=adm,ou=Group,dc=instXY,dc=ac,dc=lk
 cn:adm
 description:System Admin Staff
@@ -215 +215 @@
 
 # Acadamic staff Group
-dn:cn=acd,ou=Group,dc=YOUR-DOMAIN,dc=ac,dc=lk
+dn:cn=acd,ou=Group,dc=instXY,dc=ac,dc=lk
 cn:acd
 description:Acadamic Staff
@@ -223 +223 @@
 
 # Students Group
-dn:cn=student,ou=Group,dc=YOUR-DOMAIN,dc=ac,dc=lk
+dn:cn=student,ou=Group,dc=instXY,dc=ac,dc=lk
 cn:student
 description:Students
@@ -231 +231 @@
 
 # servers OU
-dn:ou=servers,dc=YOUR-DOMAIN,dc=ac,dc=lk
+dn:ou=servers,dc=instXY,dc=ac,dc=lk
 description:servers
 objectClass:top
@@ -238 +238 @@
 
 # idp servers
-dn:cn=idp,ou=servers,dc=YOUR-DOMAIN,dc=ac,dc=lk
+dn:cn=idp,ou=servers,dc=instXY,dc=ac,dc=lk
 cn:idp
 description:Identity Server
@@ -251 +251 @@
 # test User
 
-dn:uid=testme,ou=people,dc=YOUR-DOMAIN,dc=ac,dc=lk
+dn:uid=testme,ou=people,dc=instXY,dc=ac,dc=lk
 cn:Test Me
 uid:testme
@@ -275 +275 @@
 Save the above as a ldif file and add it to your directory as
 {{{
-ldapadd -H ldap:// -x -D "cn=admin,dc=YOUR-DOMAIN,dc=ac,dc=lk" -W -Z -f path_to_file.ldif
-}}}
+ldapadd -H ldap:// -x -D "cn=admin,dc=instXY,dc=ac,dc=lk" -W -Z -f path_to_file.ldif
+}}}