[prev in list] [next in list] [prev in thread] [next in thread] 

List:       perl-ldap-dev
Subject:    Secure LDAP Configuration
From:       207.171.7.86
Date:       2010-08-12 12:20:02
Message-ID: 05b5bd60-a96f-4aa2-bbfb-ae0b4e072b17 () y12g2000prb ! googlegroups ! com
[Download RAW message or body]

I want to create an LDAP database for my company with following
settings.

	Only the ldap user belongs to my company can search and view ldap
entries
	I want to protect ldap user belongs to my company
	One ldap user can't search and view others details
	Only allow ldap users to authenticate with there username and
password
	I need an LDAP administrator for my company.Only he can add and
delete users from LDAP.

For these how configure /etc/openldap/slapd.conf



	I need to add group and role infornations to ldap directory.Can i use
existing attributes like 'ou' for these or need to add new attribute.


Here is the LDAP entry i configured.

dn: uid=user6,dc=localhost,dc=localdomain
objectclass: top
objectclass: person
objectclass: inetorgperson
ou: [('userGroup111','userr'),('adminGroup','admin'),
('Server111','operator')]
cn: user6
sn: My company
uid: user6
userPassword: 123456


ou: [('userGroup111','userr'),('adminGroup','admin'),
('Server111','operator')] <-----newly added group and role pair.Is it
correct way????

Have any other way to do it.

[prev in list] [next in list] [prev in thread] [next in thread]