特殊:Badtitle/NS100:FedoraDirectoryServer:修订间差异
小无编辑摘要 |
小无编辑摘要 |
||
第1行: | 第1行: | ||
{{From|https://help.ubuntu.com/community/FedoraDirectoryServer}} | {{From|https://help.ubuntu.com/community/FedoraDirectoryServer}} | ||
{{Languages|UbuntuHelp:FedoraDirectoryServer}} | {{Languages|UbuntuHelp:FedoraDirectoryServer}} | ||
== Overview == | == Overview == | ||
Directory Server provides the following key features: | Directory Server provides the following key features: | ||
* '''Multi-master replication''' - Provides a highly available directory service for both read and write operations. Multi-master replication can be combined with simple and cascading replication scenarios to provide a highly flexible and scalable replication environment.'' | * '''Multi-master replication''' - Provides a highly available directory service for both read and write operations. Multi-master replication can be combined with simple and cascading replication scenarios to provide a highly flexible and scalable replication environment.'' | ||
* '''Chaining and referrals''' - Increases the power of your directory by storing a complete logical view of your directory on a single server, while maintaining data on a large number of Directory Servers transparently for clients. | * '''Chaining and referrals''' - Increases the power of your directory by storing a complete logical view of your directory on a single server, while maintaining data on a large number of Directory Servers transparently for clients. | ||
* '''Roles and Class of Service''' - Provides a flexible mechanism for grouping and sharing attributes between entries in a dynamic fashion. | * '''Roles and Class of Service''' - Provides a flexible mechanism for grouping and sharing attributes between entries in a dynamic fashion. | ||
* '''Improved access control mechanism''' - Provides support for macros that dramatically reduce the number of access control statements used in the directory and increase the scalability of access control evaluation. | * '''Improved access control mechanism''' - Provides support for macros that dramatically reduce the number of access control statements used in the directory and increase the scalability of access control evaluation. | ||
* '''Resource-limits by bind DN''' - Gives you the power to control the amount of server resources allocated to search operations based on the bind DN of the client. | * '''Resource-limits by bind DN''' - Gives you the power to control the amount of server resources allocated to search operations based on the bind DN of the client. | ||
* '''Multiple databases''' - Provides a simple way of breaking down your directory data to simplify the implementation of replication and chaining in your directory service. | * '''Multiple databases''' - Provides a simple way of breaking down your directory data to simplify the implementation of replication and chaining in your directory service. | ||
* '''Password Policy and Account Lockout''' - Allows you to define a set of rules that govern how passwords and user accounts are managed in the Directory Server. | * '''Password Policy and Account Lockout''' - Allows you to define a set of rules that govern how passwords and user accounts are managed in the Directory Server. | ||
* '''SSL''' - Provides secure communications over the network, including ciphers with up to 168-bit encryption. | * '''SSL''' - Provides secure communications over the network, including ciphers with up to 168-bit encryption. | ||
=== The major components of Directory Server include: === | === The major components of Directory Server include: === | ||
* '''An LDAP server''' - The core of the directory service, provided by the ns-slapd daemon and compliant with the LDAP v3 Internet standards. | * '''An LDAP server''' - The core of the directory service, provided by the ns-slapd daemon and compliant with the LDAP v3 Internet standards. | ||
* '''Directory Server Console''' - An improved management console that dramatically reduces the effort of setting up and maintaining your directory service. The directory console is part of Red Hat Console, the common management framework for LDAP directory services. | * '''Directory Server Console''' - An improved management console that dramatically reduces the effort of setting up and maintaining your directory service. The directory console is part of Red Hat Console, the common management framework for LDAP directory services. | ||
* '''SNMP Agent''' - Permits you to monitor your Directory Server in real time using the Simple Network Management Protocol (SNMP). | * '''SNMP Agent''' - Permits you to monitor your Directory Server in real time using the Simple Network Management Protocol (SNMP). | ||
* '''Online backup and restore''' - Allows you to create backups and restore from backups while the server is running. | * '''Online backup and restore''' - Allows you to create backups and restore from backups while the server is running. | ||
=== Further Details === | === Further Details === | ||
For further details visit: | For further details visit: | ||
https://www.redhat.com/docs/manuals/dir-server/ag/7.1/adminTOC.html | https://www.redhat.com/docs/manuals/dir-server/ag/7.1/adminTOC.html | ||
http://directory.fedora.redhat.com/wiki/Main_Page | http://directory.fedora.redhat.com/wiki/Main_Page | ||
== Preparing Ubuntu == | == Preparing Ubuntu == | ||
This howto assumes that you have a working installation of Ubuntu. I have added neccessay steps to prepare Ubuntu before you install Fedora Directory Server. This document describes howto install the Fedora Directory Server (FDS) on Ubuntu 5.10 (Breezy Badger). | This howto assumes that you have a working installation of Ubuntu. I have added neccessay steps to prepare Ubuntu before you install Fedora Directory Server. This document describes howto install the Fedora Directory Server (FDS) on Ubuntu 5.10 (Breezy Badger). | ||
== Installation == | == Installation == | ||
=== Download Fedora Directory Server Pre-built rpm === | === Download Fedora Directory Server Pre-built rpm === | ||
Ubuntu 5.10 comes with libc6 version 2.3.5 and you need to download the version suitable for Fedora Core 3 and | Ubuntu 5.10 comes with libc6 version 2.3.5 and you need to download the version suitable for Fedora Core 3 and | ||
RHEL4. I assume here that you are using your home directory. It is your choice , select your own directory for downloading and use the path accordingly when you proceed with the installation | RHEL4. I assume here that you are using your home directory. It is your choice , select your own directory for downloading and use the path accordingly when you proceed with the installation | ||
To download the prebuilt Fedora-ds rpm , you can type in a terminal: | To download the prebuilt Fedora-ds rpm , you can type in a terminal: | ||
<pre><nowiki> | <pre><nowiki> | ||
wget -c http://directory.fedora.redhat.com/download/fedora-ds-1.0.1-1.RHEL4.i386.opt.rpm | wget -c http://directory.fedora.redhat.com/download/fedora-ds-1.0.1-1.RHEL4.i386.opt.rpm | ||
</nowiki></pre> | </nowiki></pre> | ||
or else you can use following url for downloading. | or else you can use following url for downloading. | ||
http://directory.fedora.redhat.com/wiki/Download | http://directory.fedora.redhat.com/wiki/Download | ||
=== Installing Alien Package === | === Installing Alien Package === | ||
Since we are going to use pre-built rpm to install Fedora Directory Server we need to convert rpm to .deb format before we intall Fedora-ds in Ubuntu. Alien is a tool which we can used to convert .rpm into .deb format. To install alien type in a terminal | Since we are going to use pre-built rpm to install Fedora Directory Server we need to convert rpm to .deb format before we intall Fedora-ds in Ubuntu. Alien is a tool which we can used to convert .rpm into .deb format. To install alien type in a terminal | ||
<pre><nowiki> | <pre><nowiki> | ||
sudo apt-get install alien | sudo apt-get install alien | ||
</nowiki></pre> | </nowiki></pre> | ||
=== Convert .rpm Package to .deb Package === | === Convert .rpm Package to .deb Package === | ||
Now it is the time to convert downloaded Fedora-ds rpm. to .deb package in your home directory. Type the folowing in a terminal. | Now it is the time to convert downloaded Fedora-ds rpm. to .deb package in your home directory. Type the folowing in a terminal. | ||
<pre><nowiki> | <pre><nowiki> | ||
sudo alien fedora-ds-1.0.1-1.RHEL4.i386.opt.rpm | sudo alien fedora-ds-1.0.1-1.RHEL4.i386.opt.rpm | ||
</nowiki></pre> | </nowiki></pre> | ||
=== Install Dependencies === | === Install Dependencies === | ||
The Fedora Directory Server needs 'libtermcap.so.2', so let's install it. Type in a terminal. | The Fedora Directory Server needs 'libtermcap.so.2', so let's install it. Type in a terminal. | ||
<pre><nowiki> | <pre><nowiki> | ||
sudo apt-get install termcap-compat | sudo apt-get install termcap-compat | ||
</nowiki></pre> | </nowiki></pre> | ||
User Note - with Feisty (at least) on AMD64 I was unable to find a .deb anywhere with a usable libtermcap.so.2. What I did is to repeat using alien on an RPM which I found via Google search "termcap rpm". Not the ideal but it did work. | User Note - with Feisty (at least) on AMD64 I was unable to find a .deb anywhere with a usable libtermcap.so.2. What I did is to repeat using alien on an RPM which I found via Google search "termcap rpm". Not the ideal but it did work. | ||
=== Installing Java Run Time Enviorenment === | === Installing Java Run Time Enviorenment === | ||
User Note - In Feisty Java is available "apt-get install sun-java6-bin" - you can skip the rest of this section. :) | User Note - In Feisty Java is available "apt-get install sun-java6-bin" - you can skip the rest of this section. :) | ||
Fedora-ds console rquires Java Runtime Enviorenment (JRE). Either the Sun or the IBM JRE version 1.4.2 or later is required. In order to install the RPM, the IBM JRE is required before you install Fedora-ds. | Fedora-ds console rquires Java Runtime Enviorenment (JRE). Either the Sun or the IBM JRE version 1.4.2 or later is required. In order to install the RPM, the IBM JRE is required before you install Fedora-ds. | ||
The IBM JRE is available from http://www-128.ibm.com/developerworks/java/jdk/linux140/download.html | The IBM JRE is available from http://www-128.ibm.com/developerworks/java/jdk/linux140/download.html | ||
The Sun JRE is available from http://java.sun.com/j2se/1.4.2/download.html | The Sun JRE is available from http://java.sun.com/j2se/1.4.2/download.html | ||
I know it's annoying to have to do all the click throughs, licenses, registration, etc. | I know it's annoying to have to do all the click throughs, licenses, registration, etc. | ||
You should download '''j2re-1_4_2_10-linux-i586.bin''' if you are downloading from SUN. I assume that you are downloding this package to your home directory. After having finished downloading execute the following commands in a terminal. | You should download '''j2re-1_4_2_10-linux-i586.bin''' if you are downloading from SUN. I assume that you are downloding this package to your home directory. After having finished downloading execute the following commands in a terminal. | ||
<pre><nowiki> | <pre><nowiki> | ||
chmod +x j2re-1_4_2_10-linux-i586.bin | chmod +x j2re-1_4_2_10-linux-i586.bin | ||
</nowiki></pre> | </nowiki></pre> | ||
<pre><nowiki> | <pre><nowiki> | ||
./j2re-1_4_2_10-linux-i586.bin | ./j2re-1_4_2_10-linux-i586.bin | ||
</nowiki></pre> | </nowiki></pre> | ||
The above command will create a direcory called "j2re1.4.2_10" in your current directory. Move this directory to "/usr/local". This step is optional and this is the way which I like to do. You have the liberty to use your own locations. Execute the following commands in a terminal. | The above command will create a direcory called "j2re1.4.2_10" in your current directory. Move this directory to "/usr/local". This step is optional and this is the way which I like to do. You have the liberty to use your own locations. Execute the following commands in a terminal. | ||
<pre><nowiki> | <pre><nowiki> | ||
sudo mv j2re1.4.2_10 /usr/local | sudo mv j2re1.4.2_10 /usr/local | ||
</nowiki></pre> | </nowiki></pre> | ||
Next I will rename the above directory to java. This step is optional and this is the way which I like to do, | Next I will rename the above directory to java. This step is optional and this is the way which I like to do, | ||
<pre><nowiki> | <pre><nowiki> | ||
sudo mv /usr/local/j2re1.4.2_10 /usr/local/java | sudo mv /usr/local/j2re1.4.2_10 /usr/local/java | ||
</nowiki></pre> | </nowiki></pre> | ||
==== Setting JAVA_HOME enviorenment variable ==== | ==== Setting JAVA_HOME enviorenment variable ==== | ||
When intall fedora-ds it will look for JAVA_HOME enviorenment variable and best place to set this is "/etc/profile". Use vi editor to open the file and set the following two lines. | When intall fedora-ds it will look for JAVA_HOME enviorenment variable and best place to set this is "/etc/profile". Use vi editor to open the file and set the following two lines. | ||
<pre><nowiki> | <pre><nowiki> | ||
sudo vi /etc/profile | sudo vi /etc/profile | ||
</nowiki></pre> | </nowiki></pre> | ||
Following code segment reflects the changes in "/etc/profile". | Following code segment reflects the changes in "/etc/profile". | ||
<pre><nowiki> | <pre><nowiki> | ||
... | ... | ||
JAVA_HOME=/usr/local/java | JAVA_HOME=/usr/local/java | ||
export PATH JAVA_HOME | export PATH JAVA_HOME | ||
... | ... | ||
</nowiki></pre> | </nowiki></pre> | ||
Now we need to make this user einvironment modification take effect. Use dot(.) command to achieve this. You do not need logoff and login again or reboot your system. Execute in your terminal. | Now we need to make this user einvironment modification take effect. Use dot(.) command to achieve this. You do not need logoff and login again or reboot your system. Execute in your terminal. | ||
<pre><nowiki> | <pre><nowiki> | ||
# /etc/profile | |||
</nowiki></pre> | </nowiki></pre> | ||
'''Test your changes:''' | '''Test your changes:''' | ||
<pre><nowiki> | <pre><nowiki> | ||
echo $JAVA_HOME | echo $JAVA_HOME | ||
</nowiki></pre> | </nowiki></pre> | ||
Output should be: | Output should be: | ||
<pre><nowiki> | <pre><nowiki> | ||
/usr/local/java | /usr/local/java | ||
</nowiki></pre> | </nowiki></pre> | ||
=== Installing Apache2 === | === Installing Apache2 === | ||
The Fedoroa-ds admin-server of depends on Apache2 compiled conform the worker model, so let's install it. | The Fedoroa-ds admin-server of depends on Apache2 compiled conform the worker model, so let's install it. | ||
<pre><nowiki> | <pre><nowiki> | ||
sudo apt-get install apache2-mpm-worker | sudo apt-get install apache2-mpm-worker | ||
</nowiki></pre> | </nowiki></pre> | ||
In Fedora/RedHat Apache daemon is known ad "httpd" while Ubuntu is known as "apache2". Then we need to create sysmbolic links so that we can satisfy the Fedora-ds "setup" utility. Type in a terminal. | In Fedora/RedHat Apache daemon is known ad "httpd" while Ubuntu is known as "apache2". Then we need to create sysmbolic links so that we can satisfy the Fedora-ds "setup" utility. Type in a terminal. | ||
<pre><nowiki> | <pre><nowiki> | ||
sudo ln -s /usr/sbin/apache2 /usr/sbin/httpd | sudo ln -s /usr/sbin/apache2 /usr/sbin/httpd | ||
</nowiki></pre> | </nowiki></pre> | ||
=== Installing .deb package === | === Installing .deb package === | ||
I assume that you have built this package in your home directory. Execute in a terminal. | I assume that you have built this package in your home directory. Execute in a terminal. | ||
<pre><nowiki> | <pre><nowiki> | ||
sudo dpkg -i fedora-ds_1.0.1-2_i386.deb | sudo dpkg -i fedora-ds_1.0.1-2_i386.deb | ||
</nowiki></pre> | </nowiki></pre> | ||
=== Creating a user and group for the daemon === | === Creating a user and group for the daemon === | ||
Let's create a user and a group for the fedora-ds daemon. | Let's create a user and a group for the fedora-ds daemon. | ||
<pre><nowiki> | <pre><nowiki> | ||
sudo groupadd fds | sudo groupadd fds | ||
sudo useradd -s /bin/false -g fds fds | sudo useradd -s /bin/false -g fds fds | ||
</nowiki></pre> | </nowiki></pre> | ||
=== Runing Fedora-ds Setup Program === | === Runing Fedora-ds Setup Program === | ||
So far we have setup everything we need to run Fedora-ds setup program. Since setup utility will not find apache2 modules in Ubuntu that it required to operate. We will need to help it by creating an install.inf file by running the setup utility with the '-k' option". Type in a terminal. | So far we have setup everything we need to run Fedora-ds setup program. Since setup utility will not find apache2 modules in Ubuntu that it required to operate. We will need to help it by creating an install.inf file by running the setup utility with the '-k' option". Type in a terminal. | ||
<pre><nowiki> | <pre><nowiki> | ||
sudo /opt/fedora-ds/setup/setup -k | sudo /opt/fedora-ds/setup/setup -k | ||
</nowiki></pre> | </nowiki></pre> | ||
*Choose option '1' for as minimal questions as possible. | *Choose option '1' for as minimal questions as possible. | ||
*Choose 'fds' when asked which user and group apply. After finalizing the setup wizard, the directory server itself will be started as user 'fds'. | *Choose 'fds' when asked which user and group apply. After finalizing the setup wizard, the directory server itself will be started as user 'fds'. | ||
*It listens on the port you just configured , I chose port '389', the default LDAP-port. | *It listens on the port you just configured , I chose port '389', the default LDAP-port. | ||
When done, copy the install.inf file to /opt | When done, copy the install.inf file to /opt | ||
<pre><nowiki> | <pre><nowiki> | ||
sudo cp /opt/fedora-ds/setup/install.inf /opt | sudo cp /opt/fedora-ds/setup/install.inf /opt | ||
sudo chmod 640 /opt/install.inf | sudo chmod 640 /opt/install.inf | ||
</nowiki></pre> | </nowiki></pre> | ||
Now we have to edit the [admin] section of the install.inf using | Now we have to edit the [admin] section of the install.inf using | ||
<pre><nowiki> | <pre><nowiki> | ||
sudo vi /opt/install.inf | sudo vi /opt/install.inf | ||
</nowiki></pre> | </nowiki></pre> | ||
and add "ApacheRoot= /usr/lib/apache2" as in the following example. | and add "ApacheRoot= /usr/lib/apache2" as in the following example. | ||
The following code segment reflects your changes in "/opt/install.inf" file | The following code segment reflects your changes in "/opt/install.inf" file | ||
<pre><nowiki> | <pre><nowiki> | ||
第227行: | 第143行: | ||
ApacheRoot= /usr/lib/apache2 | ApacheRoot= /usr/lib/apache2 | ||
</nowiki></pre> | </nowiki></pre> | ||
After having finished above execute the following command to re-run the setup program using. | After having finished above execute the following command to re-run the setup program using. | ||
<pre><nowiki> | <pre><nowiki> | ||
sudo /opt/fedora-ds/setup/setup -s -f /opt/install.inf | sudo /opt/fedora-ds/setup/setup -s -f /opt/install.inf | ||
</nowiki></pre> | </nowiki></pre> | ||
=== Adjusting the admin-server's httpd.conf file === | === Adjusting the admin-server's httpd.conf file === | ||
Fedora-ds admin-server has its own httpd.conf file. Since some modules do not have to be loaded as they are compiled in statically we need to dissable them modules. Edit the file using vi and comment out the modules to dissable them. | Fedora-ds admin-server has its own httpd.conf file. Since some modules do not have to be loaded as they are compiled in statically we need to dissable them modules. Edit the file using vi and comment out the modules to dissable them. | ||
<pre><nowiki> | <pre><nowiki> | ||
sudo vi /opt/fedora-ds/admin-serv/config/httpd.conf | sudo vi /opt/fedora-ds/admin-serv/config/httpd.conf | ||
</nowiki></pre> | </nowiki></pre> | ||
After editing "httpd.conf" file, the following code segment reflects your changes. | After editing "httpd.conf" file, the following code segment reflects your changes. | ||
<pre><nowiki> | <pre><nowiki> | ||
... | ... | ||
#LoadModule access_module /usr/lib/apache2/modules/mod_access.so | #LoadModule access_module /usr/lib/apache2/modules/mod_access.so | ||
第260行: | 第168行: | ||
#LoadModule alias_module /usr/lib/apache2/modules/mod_alias.so | #LoadModule alias_module /usr/lib/apache2/modules/mod_alias.so | ||
... | ... | ||
</nowiki></pre> | </nowiki></pre> | ||
=== Starting the admin-server === | === Starting the admin-server === | ||
Lets start the admin-sever | Lets start the admin-sever | ||
<pre><nowiki> | <pre><nowiki> | ||
sudo /opt/fedora-ds/start-admin | sudo /opt/fedora-ds/start-admin | ||
</nowiki></pre> | </nowiki></pre> | ||
If it starts, Good. Cheers from Chinthaka. | If it starts, Good. Cheers from Chinthaka. | ||
=== Making FDS persistant Across System Reboots === | === Making FDS persistant Across System Reboots === | ||
Since Fedora-ds has no init script to start at boot time you need to do the following trick in Ubuntu. Use RcLocalHowto learn howto create the file "/etc/init.d/local" | Since Fedora-ds has no init script to start at boot time you need to do the following trick in Ubuntu. Use RcLocalHowto learn howto create the file "/etc/init.d/local" | ||
and add the following two line to this file: | and add the following two line to this file: | ||
<pre><nowiki> | <pre><nowiki> | ||
/opt/fedora-ds/slapd-fossedu/start-slapd | /opt/fedora-ds/slapd-fossedu/start-slapd | ||
/opt/fedora-ds/start-admin | /opt/fedora-ds/start-admin | ||
</nowiki></pre> | </nowiki></pre> | ||
== Adding users for centralized authentication == | == Adding users for centralized authentication == | ||
I will now tell you how you should create new users for centralized authentication with Fedora-ds. You need to create Linux user account (Posix) account first. By default user's home directories are created <code><nowiki>/home</nowiki></code> directory in Linux systems and I am going to take a different approach here. Later we need to mount users home directories automatically when they login from a workstation in our LAN. If we automount directory server's home directory in to the workstation's home directory then the local users of the workstattion won't be able to access their home directories. We need to avoid this practical issue and I suggest you to create a different home for our roaming users. | I will now tell you how you should create new users for centralized authentication with Fedora-ds. You need to create Linux user account (Posix) account first. By default user's home directories are created <code><nowiki>/home</nowiki></code> directory in Linux systems and I am going to take a different approach here. Later we need to mount users home directories automatically when they login from a workstation in our LAN. If we automount directory server's home directory in to the workstation's home directory then the local users of the workstattion won't be able to access their home directories. We need to avoid this practical issue and I suggest you to create a different home for our roaming users. | ||
'''Look at my test scenario:''' | '''Look at my test scenario:''' | ||
https://help.ubuntu.com/community/FedoraDirectoryServer?action=AttachFile&do=get&target=FosseduAutoHome.jpg | https://help.ubuntu.com/community/FedoraDirectoryServer?action=AttachFile&do=get&target=FosseduAutoHome.jpg | ||
'''Create a new home''' | '''Create a new home''' | ||
<pre><nowiki> | <pre><nowiki> | ||
sudo mkdir /ahome | sudo mkdir /ahome | ||
</nowiki></pre> | </nowiki></pre> | ||
'''To create user:''' | '''To create user:''' | ||
<pre><nowiki> | <pre><nowiki> | ||
sudo useradd -m -d /ahome/fmaster -s /bin/bash -c "Foss Master" fmaster | sudo useradd -m -d /ahome/fmaster -s /bin/bash -c "Foss Master" fmaster | ||
</nowiki></pre> | </nowiki></pre> | ||
Then the rest you can do | Then the rest you can do | ||
=== Using Fedora-ds Managent console === | === Using Fedora-ds Managent console === | ||
I assume the follwing example configuration here. | I assume the follwing example configuration here. | ||
*'''Hostname:-''' dsmaster.fossedu.org | *'''Hostname:-''' dsmaster.fossedu.org | ||
*'''Console port:-'''16000 | *'''Console port:-'''16000 | ||
Execute the following command to start the console. Please use your settings accordingly and enter the admin password given by you at the time of running setup program. Execute the following commands in a terminal. | Execute the following command to start the console. Please use your settings accordingly and enter the admin password given by you at the time of running setup program. Execute the following commands in a terminal. | ||
<pre><nowiki> | <pre><nowiki> | ||
cd /opt/fedora-ds | cd /opt/fedora-ds | ||
./startconsole -u admin -a http://dsmaster.fossedu.org:16000 & | ./startconsole -u admin -a http://dsmaster.fossedu.org:16000 & | ||
</nowiki></pre> | </nowiki></pre> | ||
https://help.ubuntu.com/community/FedoraDirectoryServer?action=AttachFile&do=get&target=FedoraDsMmcLoging.jpg | https://help.ubuntu.com/community/FedoraDirectoryServer?action=AttachFile&do=get&target=FedoraDsMmcLoging.jpg | ||
Once you have logged in, you should see the Fedora-ds MMC main screen as like this. | Once you have logged in, you should see the Fedora-ds MMC main screen as like this. | ||
https://help.ubuntu.com/community/FedoraDirectoryServer?action=AttachFile&do=get&target=FdsMmcMainScreen.jpg | https://help.ubuntu.com/community/FedoraDirectoryServer?action=AttachFile&do=get&target=FdsMmcMainScreen.jpg | ||
=== Creating a New User === | === Creating a New User === | ||
Use can create users using the following screens and the second screen shot shows how you can map with the Fedors-ds user with an existing Linux account. | Use can create users using the following screens and the second screen shot shows how you can map with the Fedors-ds user with an existing Linux account. | ||
'''Screen to create a new user:''' | '''Screen to create a new user:''' | ||
https://help.ubuntu.com/community/FedoraDirectoryServer?action=AttachFile&do=get&target=FdsMmcCreateUser.jpg | https://help.ubuntu.com/community/FedoraDirectoryServer?action=AttachFile&do=get&target=FdsMmcCreateUser.jpg | ||
'''Screen to map Fedora-ds user with a Linux acount:''' | '''Screen to map Fedora-ds user with a Linux acount:''' | ||
https://help.ubuntu.com/community/FedoraDirectoryServer?action=AttachFile&do=get&target=FdsMmcMapPosixUser.jpg | https://help.ubuntu.com/community/FedoraDirectoryServer?action=AttachFile&do=get&target=FdsMmcMapPosixUser.jpg | ||
== Setting Workstations with Fedora-ds == | == Setting Workstations with Fedora-ds == | ||
I have created a seperate howto for client setup. | I have created a seperate howto for client setup. | ||
Please view: FedoraDirectoryServerClientHowto | Please view: FedoraDirectoryServerClientHowto | ||
Howto created by: ChinthakaDeshapriya. | Howto created by: ChinthakaDeshapriya. | ||
---- | ---- | ||
[[category:CategoryDocumentation]] | [[category:CategoryDocumentation]] | ||
[[category:UbuntuHelp]] | [[category:UbuntuHelp]] |
2007年11月30日 (五) 17:11的版本
文章出处: |
{{#if: | {{{2}}} | https://help.ubuntu.com/community/FedoraDirectoryServer }} |
点击翻译: |
English {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/af | • {{#if: UbuntuHelp:FedoraDirectoryServer|Afrikaans| [[::FedoraDirectoryServer/af|Afrikaans]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/ar | • {{#if: UbuntuHelp:FedoraDirectoryServer|العربية| [[::FedoraDirectoryServer/ar|العربية]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/az | • {{#if: UbuntuHelp:FedoraDirectoryServer|azərbaycanca| [[::FedoraDirectoryServer/az|azərbaycanca]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/bcc | • {{#if: UbuntuHelp:FedoraDirectoryServer|جهلسری بلوچی| [[::FedoraDirectoryServer/bcc|جهلسری بلوچی]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/bg | • {{#if: UbuntuHelp:FedoraDirectoryServer|български| [[::FedoraDirectoryServer/bg|български]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/br | • {{#if: UbuntuHelp:FedoraDirectoryServer|brezhoneg| [[::FedoraDirectoryServer/br|brezhoneg]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/ca | • {{#if: UbuntuHelp:FedoraDirectoryServer|català| [[::FedoraDirectoryServer/ca|català]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/cs | • {{#if: UbuntuHelp:FedoraDirectoryServer|čeština| [[::FedoraDirectoryServer/cs|čeština]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/de | • {{#if: UbuntuHelp:FedoraDirectoryServer|Deutsch| [[::FedoraDirectoryServer/de|Deutsch]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/el | • {{#if: UbuntuHelp:FedoraDirectoryServer|Ελληνικά| [[::FedoraDirectoryServer/el|Ελληνικά]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/es | • {{#if: UbuntuHelp:FedoraDirectoryServer|español| [[::FedoraDirectoryServer/es|español]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/fa | • {{#if: UbuntuHelp:FedoraDirectoryServer|فارسی| [[::FedoraDirectoryServer/fa|فارسی]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/fi | • {{#if: UbuntuHelp:FedoraDirectoryServer|suomi| [[::FedoraDirectoryServer/fi|suomi]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/fr | • {{#if: UbuntuHelp:FedoraDirectoryServer|français| [[::FedoraDirectoryServer/fr|français]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/gu | • {{#if: UbuntuHelp:FedoraDirectoryServer|ગુજરાતી| [[::FedoraDirectoryServer/gu|ગુજરાતી]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/he | • {{#if: UbuntuHelp:FedoraDirectoryServer|עברית| [[::FedoraDirectoryServer/he|עברית]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/hu | • {{#if: UbuntuHelp:FedoraDirectoryServer|magyar| [[::FedoraDirectoryServer/hu|magyar]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/id | • {{#if: UbuntuHelp:FedoraDirectoryServer|Bahasa Indonesia| [[::FedoraDirectoryServer/id|Bahasa Indonesia]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/it | • {{#if: UbuntuHelp:FedoraDirectoryServer|italiano| [[::FedoraDirectoryServer/it|italiano]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/ja | • {{#if: UbuntuHelp:FedoraDirectoryServer|日本語| [[::FedoraDirectoryServer/ja|日本語]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/ko | • {{#if: UbuntuHelp:FedoraDirectoryServer|한국어| [[::FedoraDirectoryServer/ko|한국어]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/ksh | • {{#if: UbuntuHelp:FedoraDirectoryServer|Ripoarisch| [[::FedoraDirectoryServer/ksh|Ripoarisch]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/mr | • {{#if: UbuntuHelp:FedoraDirectoryServer|मराठी| [[::FedoraDirectoryServer/mr|मराठी]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/ms | • {{#if: UbuntuHelp:FedoraDirectoryServer|Bahasa Melayu| [[::FedoraDirectoryServer/ms|Bahasa Melayu]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/nl | • {{#if: UbuntuHelp:FedoraDirectoryServer|Nederlands| [[::FedoraDirectoryServer/nl|Nederlands]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/no | • {{#if: UbuntuHelp:FedoraDirectoryServer|norsk| [[::FedoraDirectoryServer/no|norsk]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/oc | • {{#if: UbuntuHelp:FedoraDirectoryServer|occitan| [[::FedoraDirectoryServer/oc|occitan]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/pl | • {{#if: UbuntuHelp:FedoraDirectoryServer|polski| [[::FedoraDirectoryServer/pl|polski]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/pt | • {{#if: UbuntuHelp:FedoraDirectoryServer|português| [[::FedoraDirectoryServer/pt|português]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/ro | • {{#if: UbuntuHelp:FedoraDirectoryServer|română| [[::FedoraDirectoryServer/ro|română]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/ru | • {{#if: UbuntuHelp:FedoraDirectoryServer|русский| [[::FedoraDirectoryServer/ru|русский]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/si | • {{#if: UbuntuHelp:FedoraDirectoryServer|සිංහල| [[::FedoraDirectoryServer/si|සිංහල]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/sq | • {{#if: UbuntuHelp:FedoraDirectoryServer|shqip| [[::FedoraDirectoryServer/sq|shqip]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/sr | • {{#if: UbuntuHelp:FedoraDirectoryServer|српски / srpski| [[::FedoraDirectoryServer/sr|српски / srpski]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/sv | • {{#if: UbuntuHelp:FedoraDirectoryServer|svenska| [[::FedoraDirectoryServer/sv|svenska]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/th | • {{#if: UbuntuHelp:FedoraDirectoryServer|ไทย| [[::FedoraDirectoryServer/th|ไทย]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/tr | • {{#if: UbuntuHelp:FedoraDirectoryServer|Türkçe| [[::FedoraDirectoryServer/tr|Türkçe]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/vi | • {{#if: UbuntuHelp:FedoraDirectoryServer|Tiếng Việt| [[::FedoraDirectoryServer/vi|Tiếng Việt]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/yue | • {{#if: UbuntuHelp:FedoraDirectoryServer|粵語| [[::FedoraDirectoryServer/yue|粵語]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/zh | • {{#if: UbuntuHelp:FedoraDirectoryServer|中文| [[::FedoraDirectoryServer/zh|中文]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/zh-hans | • {{#if: UbuntuHelp:FedoraDirectoryServer|中文(简体)| [[::FedoraDirectoryServer/zh-hans|中文(简体)]]}}|}} {{#ifexist: {{#if: UbuntuHelp:FedoraDirectoryServer | UbuntuHelp:FedoraDirectoryServer | {{#if: | :}}FedoraDirectoryServer}}/zh-hant | • {{#if: UbuntuHelp:FedoraDirectoryServer|中文(繁體)| [[::FedoraDirectoryServer/zh-hant|中文(繁體)]]}}|}} |
{{#ifeq:UbuntuHelp:FedoraDirectoryServer|:FedoraDirectoryServer|请不要直接编辑翻译本页,本页将定期与来源同步。}} |
{{#ifexist: :FedoraDirectoryServer/zh | | {{#ifexist: FedoraDirectoryServer/zh | | {{#ifeq: {{#titleparts:FedoraDirectoryServer|1|-1|}} | zh | | }} }} }} {{#ifeq: {{#titleparts:FedoraDirectoryServer|1|-1|}} | zh | | }}
Overview
Directory Server provides the following key features:
- Multi-master replication - Provides a highly available directory service for both read and write operations. Multi-master replication can be combined with simple and cascading replication scenarios to provide a highly flexible and scalable replication environment.
- Chaining and referrals - Increases the power of your directory by storing a complete logical view of your directory on a single server, while maintaining data on a large number of Directory Servers transparently for clients.
- Roles and Class of Service - Provides a flexible mechanism for grouping and sharing attributes between entries in a dynamic fashion.
- Improved access control mechanism - Provides support for macros that dramatically reduce the number of access control statements used in the directory and increase the scalability of access control evaluation.
- Resource-limits by bind DN - Gives you the power to control the amount of server resources allocated to search operations based on the bind DN of the client.
- Multiple databases - Provides a simple way of breaking down your directory data to simplify the implementation of replication and chaining in your directory service.
- Password Policy and Account Lockout - Allows you to define a set of rules that govern how passwords and user accounts are managed in the Directory Server.
- SSL - Provides secure communications over the network, including ciphers with up to 168-bit encryption.
The major components of Directory Server include:
- An LDAP server - The core of the directory service, provided by the ns-slapd daemon and compliant with the LDAP v3 Internet standards.
- Directory Server Console - An improved management console that dramatically reduces the effort of setting up and maintaining your directory service. The directory console is part of Red Hat Console, the common management framework for LDAP directory services.
- SNMP Agent - Permits you to monitor your Directory Server in real time using the Simple Network Management Protocol (SNMP).
- Online backup and restore - Allows you to create backups and restore from backups while the server is running.
Further Details
For further details visit: https://www.redhat.com/docs/manuals/dir-server/ag/7.1/adminTOC.html http://directory.fedora.redhat.com/wiki/Main_Page
Preparing Ubuntu
This howto assumes that you have a working installation of Ubuntu. I have added neccessay steps to prepare Ubuntu before you install Fedora Directory Server. This document describes howto install the Fedora Directory Server (FDS) on Ubuntu 5.10 (Breezy Badger).
Installation
Download Fedora Directory Server Pre-built rpm
Ubuntu 5.10 comes with libc6 version 2.3.5 and you need to download the version suitable for Fedora Core 3 and RHEL4. I assume here that you are using your home directory. It is your choice , select your own directory for downloading and use the path accordingly when you proceed with the installation To download the prebuilt Fedora-ds rpm , you can type in a terminal:
wget -c http://directory.fedora.redhat.com/download/fedora-ds-1.0.1-1.RHEL4.i386.opt.rpm
or else you can use following url for downloading. http://directory.fedora.redhat.com/wiki/Download
Installing Alien Package
Since we are going to use pre-built rpm to install Fedora Directory Server we need to convert rpm to .deb format before we intall Fedora-ds in Ubuntu. Alien is a tool which we can used to convert .rpm into .deb format. To install alien type in a terminal
sudo apt-get install alien
Convert .rpm Package to .deb Package
Now it is the time to convert downloaded Fedora-ds rpm. to .deb package in your home directory. Type the folowing in a terminal.
sudo alien fedora-ds-1.0.1-1.RHEL4.i386.opt.rpm
Install Dependencies
The Fedora Directory Server needs 'libtermcap.so.2', so let's install it. Type in a terminal.
sudo apt-get install termcap-compat
User Note - with Feisty (at least) on AMD64 I was unable to find a .deb anywhere with a usable libtermcap.so.2. What I did is to repeat using alien on an RPM which I found via Google search "termcap rpm". Not the ideal but it did work.
Installing Java Run Time Enviorenment
User Note - In Feisty Java is available "apt-get install sun-java6-bin" - you can skip the rest of this section. :) Fedora-ds console rquires Java Runtime Enviorenment (JRE). Either the Sun or the IBM JRE version 1.4.2 or later is required. In order to install the RPM, the IBM JRE is required before you install Fedora-ds. The IBM JRE is available from http://www-128.ibm.com/developerworks/java/jdk/linux140/download.html The Sun JRE is available from http://java.sun.com/j2se/1.4.2/download.html I know it's annoying to have to do all the click throughs, licenses, registration, etc. You should download j2re-1_4_2_10-linux-i586.bin if you are downloading from SUN. I assume that you are downloding this package to your home directory. After having finished downloading execute the following commands in a terminal.
chmod +x j2re-1_4_2_10-linux-i586.bin
./j2re-1_4_2_10-linux-i586.bin
The above command will create a direcory called "j2re1.4.2_10" in your current directory. Move this directory to "/usr/local". This step is optional and this is the way which I like to do. You have the liberty to use your own locations. Execute the following commands in a terminal.
sudo mv j2re1.4.2_10 /usr/local
Next I will rename the above directory to java. This step is optional and this is the way which I like to do,
sudo mv /usr/local/j2re1.4.2_10 /usr/local/java
Setting JAVA_HOME enviorenment variable
When intall fedora-ds it will look for JAVA_HOME enviorenment variable and best place to set this is "/etc/profile". Use vi editor to open the file and set the following two lines.
sudo vi /etc/profile
Following code segment reflects the changes in "/etc/profile".
... JAVA_HOME=/usr/local/java export PATH JAVA_HOME ...
Now we need to make this user einvironment modification take effect. Use dot(.) command to achieve this. You do not need logoff and login again or reboot your system. Execute in your terminal.
# /etc/profile
Test your changes:
echo $JAVA_HOME
Output should be:
/usr/local/java
Installing Apache2
The Fedoroa-ds admin-server of depends on Apache2 compiled conform the worker model, so let's install it.
sudo apt-get install apache2-mpm-worker
In Fedora/RedHat Apache daemon is known ad "httpd" while Ubuntu is known as "apache2". Then we need to create sysmbolic links so that we can satisfy the Fedora-ds "setup" utility. Type in a terminal.
sudo ln -s /usr/sbin/apache2 /usr/sbin/httpd
Installing .deb package
I assume that you have built this package in your home directory. Execute in a terminal.
sudo dpkg -i fedora-ds_1.0.1-2_i386.deb
Creating a user and group for the daemon
Let's create a user and a group for the fedora-ds daemon.
sudo groupadd fds sudo useradd -s /bin/false -g fds fds
Runing Fedora-ds Setup Program
So far we have setup everything we need to run Fedora-ds setup program. Since setup utility will not find apache2 modules in Ubuntu that it required to operate. We will need to help it by creating an install.inf file by running the setup utility with the '-k' option". Type in a terminal.
sudo /opt/fedora-ds/setup/setup -k
- Choose option '1' for as minimal questions as possible.
- Choose 'fds' when asked which user and group apply. After finalizing the setup wizard, the directory server itself will be started as user 'fds'.
- It listens on the port you just configured , I chose port '389', the default LDAP-port.
When done, copy the install.inf file to /opt
sudo cp /opt/fedora-ds/setup/install.inf /opt sudo chmod 640 /opt/install.inf
Now we have to edit the [admin] section of the install.inf using
sudo vi /opt/install.inf
and add "ApacheRoot= /usr/lib/apache2" as in the following example. The following code segment reflects your changes in "/opt/install.inf" file
... [admin] SysUser= root Port= 16000 ServerIpAddress= ServerAdminID= admin ServerAdminPwd= dsadmin ApacheDir= /usr/sbin ApacheRoot= /usr/lib/apache2
After having finished above execute the following command to re-run the setup program using.
sudo /opt/fedora-ds/setup/setup -s -f /opt/install.inf
Adjusting the admin-server's httpd.conf file
Fedora-ds admin-server has its own httpd.conf file. Since some modules do not have to be loaded as they are compiled in statically we need to dissable them modules. Edit the file using vi and comment out the modules to dissable them.
sudo vi /opt/fedora-ds/admin-serv/config/httpd.conf
After editing "httpd.conf" file, the following code segment reflects your changes.
... #LoadModule access_module /usr/lib/apache2/modules/mod_access.so #LoadModule auth_module /usr/lib/apache2/modules/mod_auth.so #LoadModule log_config_module /usr/lib/apache2/modules/mod_log_config.so #LoadModule env_module /usr/lib/apache2/modules/mod_env.so ... #LoadModule setenvif_module /usr/lib/apache2/modules/mod_setenvif.so #LoadModule mime_module /usr/lib/apache2/modules/mod_mime.so ... #LoadModule negotiation_module /usr/lib/apache2/modules/mod_negotiation.so #LoadModule dir_module /usr/lib/apache2/modules/mod_dir.so ... #LoadModule alias_module /usr/lib/apache2/modules/mod_alias.so ...
Starting the admin-server
Lets start the admin-sever
sudo /opt/fedora-ds/start-admin
If it starts, Good. Cheers from Chinthaka.
Making FDS persistant Across System Reboots
Since Fedora-ds has no init script to start at boot time you need to do the following trick in Ubuntu. Use RcLocalHowto learn howto create the file "/etc/init.d/local" and add the following two line to this file:
/opt/fedora-ds/slapd-fossedu/start-slapd /opt/fedora-ds/start-admin
Adding users for centralized authentication
I will now tell you how you should create new users for centralized authentication with Fedora-ds. You need to create Linux user account (Posix) account first. By default user's home directories are created /home
directory in Linux systems and I am going to take a different approach here. Later we need to mount users home directories automatically when they login from a workstation in our LAN. If we automount directory server's home directory in to the workstation's home directory then the local users of the workstattion won't be able to access their home directories. We need to avoid this practical issue and I suggest you to create a different home for our roaming users.
Look at my test scenario:
Create a new home
sudo mkdir /ahome
To create user:
sudo useradd -m -d /ahome/fmaster -s /bin/bash -c "Foss Master" fmaster
Then the rest you can do
Using Fedora-ds Managent console
I assume the follwing example configuration here.
- Hostname:- dsmaster.fossedu.org
- Console port:-16000
Execute the following command to start the console. Please use your settings accordingly and enter the admin password given by you at the time of running setup program. Execute the following commands in a terminal.
cd /opt/fedora-ds ./startconsole -u admin -a http://dsmaster.fossedu.org:16000 &
Once you have logged in, you should see the Fedora-ds MMC main screen as like this.
Creating a New User
Use can create users using the following screens and the second screen shot shows how you can map with the Fedors-ds user with an existing Linux account. Screen to create a new user: Screen to map Fedora-ds user with a Linux acount:
Setting Workstations with Fedora-ds
I have created a seperate howto for client setup. Please view: FedoraDirectoryServerClientHowto Howto created by: ChinthakaDeshapriya.