OpenLDAP installation

最简单的安装方法rpm安装

# rpm -qa|grep openldap

openldap-debuginfo-2.4.23-32.el6_4.1.x86_64

openldap-2.4.23-32.el6_4.1.x86_64

compat-openldap-2.3.43-2.el6.x86_64

openldap-clients-2.4.23-32.el6_4.1.x86_64

openldap-servers-sql-2.4.23-32.el6_4.1.x86_64

openldap-servers-2.4.23-32.el6_4.1.x86_64

openldap-devel-2.4.23-32.el6_4.1.x86_64

以下是源码安装.

下载OpenLDAP的稳定版

# wget ftp://ftp.openldap.org/pub/OpenLDAP/openldap-release/openldap-2.4.39.tgz

安装依赖软件

为了全面兼容LDAPv3, 需要安装依赖软件, 这些软件的版本建议

http://www.openldap.org/doc/admin24/appendix-recommended-versions.html

1. TLS(Transport Layer Security) service 依赖包, OpenLDAP客户端和服务端都需要安装.

OpenSSL, GnuTLS, or MozNSS(三选一)

OpenSSL is available from http://www.openssl.org/.

GnuTLS is available from http://www.gnu.org/software/gnutls/.

Mozilla NSS is available from http://developer.mozilla.org/en/NSS.

安装openssl

# wget http://www.openssl.org/source/openssl-1.0.1g.tar.gz

# tar -zxvf openssl-1.0.1g.tar.gz

# cd openssl-1.0.1g

阅读INSTALL和README

# ./config --prefix=/usr/local --openssldir=/usr/local/ssl

# make

# make install

2. SASL(Simple Authentication and Security Layer) service 依赖包, OpenLDAP客户端和服务端都需要安装.

Cyrus SASL

http://asg.web.cmu.edu/sasl/sasl-library.html

安装sasl

# wget ftp://ftp.andrew.cmu.edu/pub/cyrus-mail/cyrus-sasl-2.1.25.tar.gz

# tar -zxvf cyrus-sasl-2.1.25.tar.gz

# cd cyrus-sasl-2.1.25

阅读INSTALL和README

# ./configure

# make

# make install

********************************************************

* WARNING:

* Plugins are being installed into /usr/local/lib/sasl2,

* but the library will look for them in /usr/lib/sasl2.

* You need to make sure that the plugins will eventually

* be in /usr/lib/sasl2 -- the easiest way is to make a

* symbolic link from /usr/lib/sasl2 to /usr/local/lib/sasl2,

* but this may not be appropriate for your site, so this

* installation procedure won't do it for you.

* If you don't want to do this for some reason, you can

* set the location where the library will look for plugins

* by setting the environment variable SASL_PATH to the path

* the library should use.

********************************************************

make[2]: Nothing to be done for `install-data-am'.

make[2]: Leaving directory `/opt/soft_bak/cyrus-sasl-2.1.25'

make[1]: Leaving directory `/opt/soft_bak/cyrus-sasl-2.1.25'

[root@db-172-16-3-150 cyrus-sasl-2.1.25]# ln -s /usr/local/lib/sasl2 /usr/lib/sasl2

sasl版本不对可能导致slapd启动失败, 见/var/log/messages

slapd[15107]: auxpropfunc error version mismatch with plug-in

3. Kerberos Authentication Service

Heimdal or MIT Kerberos V libraries(二选一)

Heimdal Kerberos is available from http://www.pdc.kth.se/heimdal/.

MIT Kerberos is available from http://web.mit.edu/kerberos/www/.

安装MIT Kerberos V Libraries

# wget http://web.mit.edu/kerberos/www/dist/krb5/1.12/krb5-1.12.1-signed.tar

# tar -xvf krb5-1.12.1-signed.tar

# tar -zxvf krb5-1.12.1.tar.gz

# cd krb5-1.12.1

# cd src

# ./configure

# make

# make install

4. Database Software

OpenLDAP's slapd BDB and HDB primary database backends require Oracle Corporation Berkeley DB

Berkeley DB download page http://www.oracle.com/technology/software/products/berkeley-db/index.html

http://docs.oracle.com/cd/E17076_03/html/installation/index.html

下载

http://download.oracle.com/otn/berkeley-db/db-6.0.30.tar.gz

安装

# tar -zxvf db-6.0.30.tar.gz

# cd db-6.0.30

# cd dist/buildpkg

# cd build_unix

# ../dist/configure --prefix=/opt/bdb6 --enable-sql

# make

# make install

5. Threads

OpenLDAP supports POSIX pthreads, Mach CThreads, and a number of other varieties.

6. TCP Wrappers

slapd supports TCP Wrappers (IP level access control filters) if preinstalled.

7. 配置ld.so.conf

# vi /etc/ld.so.conf

include ld.so.conf.d/*.conf

/usr/local/lib

/usr/lib/sasl2

/opt/bdb6/lib

# ldconfig

安装openldap

# tar -zxvf openldap-2.4.39.tgz

# cd openldap-2.4.39

# ./configure --help

# ./configure --prefix=/opt/openldap-2.4.39 --with-threads --with-tls --with-cyrus-sasl

# make depend

# make

# make install

# export MANPATH=/opt/openldap-2.4.39/share/man:$MANPATH

# export MANPATH=/opt/openldap-2.4.39/bin:/opt/openldap-2.4.39/sbin:$PATH

[参考]

1. http://www.openldap.org/doc/admin24/index.html

2. http://www.openldap.org/software/download/

3. http://www.openldap.org/doc/admin24/quickstart.html

4. http://www.openldap.org/doc/admin24/install.html

5. http://www.openldap.org/doc/admin24/appendix-recommended-versions.html

6. http://www.openssl.org/

7. http://www.gnu.org/software/gnutls/

8. http://developer.mozilla.org/en/NSS

9. http://asg.web.cmu.edu/sasl/sasl-library.html

10. http://www.pdc.kth.se/heimdal/

11. http://web.mit.edu/kerberos/www/

12. http://www.oracle.com/technology/software/products/berkeley-db/index.html

13. http://www.lysator.liu.se/~nisse/nettle/

14. 配置源码时支持的环境变量

Variable	Description
CC	Specify alternative C Compiler
CFLAGS	Specify additional compiler flags
CPPFLAGS	Specify C Preprocessor flags
LDFLAGS	Specify linker flags
LIBS	Specify additional libraries

时间： 2024-10-29 15:39:22

OpenLDAP installation的相关文章

用mysql作openldap的后台数据库

Setting up OpenLDAP with MySQL backend 用mysql作后台数据库安装openldap author: TBONIUS OpenLDAP is an X.500 Lightweight Directory Access Server used for centralized authentication and directory lookups. This article covers configuring this service to utilize

70.5. ProFTPD + MySQL / OpenLDAP 用户认证

准备工作下载ProFTPD : ftp://ftp.proftpd.org/distrib/source/proftpd-1.2.7.tar.gz 下载 mod_sql : http://www.lastditcheffort.org/~aah/proftpd/mod_sql/ 下载mod_ldap-2.8.10 : http://www.horde.net/~jwm/software/mod_ldap/ 70.5.1. Proftpd + MySQL tar xvzf proftpd-ver

Oracle9i(9.2.0.4) Installation Errors Under Redhat 9

error|oracle While installation of Oracle 9i (9.2.0.4) under the Redhat 9 I got an error like following: Error: You do not have sufficient privileges to write to the specified path. in compnonent Database Configuration Assistant 9.2.0.1.0. Installat

Oracle 9i Installation on Red Hat Linux

oracle 1, Uncompress and unpack downloaded files One step procedure (uses less disk space and is faster): zcat lnx_920_disk1.cpio.gz | cpio -idmv zcat lnx_920_disk2.cpio.gz | cpio -idmv zcat lnx_920_disk3.cpio.gz | cpio -idmv Two step procedur

IBM Installation Manager创建并服务于WebSphere Application Server主映像

简介本文所述的过程使用 IBM Installation Manager,且不需要将其安装在每个系统上.本文介绍如何将重要的 Installation Manager 数据与产品映像一起打包,以便在部署映像之后可以对映像进行处理 .我们将首先回顾一下 Installation Manager 的一些基本知识. Installation Manager 基础知识在典型的安装拓扑结构中,IBM Installation Manager 在每台计算机上安装一次.Installation Mana

使用IBM Installation Factory简化WAS安装和部署

使用IBM Installation Factory简化WebSphere Application Server安装和部署引言安装和配置一台 WebSphere Application Server( 以下简称 WAS) 通常需要下面几个步骤: 安装 WAS GA 版本安装指定的 WAS FixPack 安装指定的 JDK FixPack 安装指定的若干 interim fixes 创建并配置 Application Server 在创建的 Application Server 上部署相关

UVa 1193 / POJ 1328 Radar Installation：贪心及区间选点

1193 - Radar Installation Time limit: 3.000 seconds http://uva.onlinejudge.org/index.php?option=onlinejudge&page=show_problem&problem=3634 http://poj.org/problem?id=1328 Assume the coasting is an infinite straight line. Land is in one side of coas

利用IBM Installation Toolkit网络安装PowerLinux

很多场景下用网络安装 PowerLinux 是个很好的,甚至是必须的选择,例如:需要安装非常多分区的 PowerLinux,或者,要安装的分区没有物理光驱或虚拟光驱,无法进行光盘安装. 两种 PowerLinux,无论 Red Hat 还是 SUSE,都有自己的网络安装方法,但是一个是配置过程比较复杂,另外一个是两种 Linux 做网络安装的方法差别很大,给 PowerLinux 管理员造成管理上的困难. IBM Installation Toolkit for PowerLinux 是 IBM

InstallShield Installation Information是什么

InstallShield Installation Information文件就是一个专门存储安装程序信息的文件夹.用于某些程序的卸载和更新.InstallShield是一个制作安装程序的软件. 简单来说:InstallShield Installation Information 文件夹里放的是用 InstallShield 打包的安装程序留下的安装及卸载信息. 注意:如果有些程序无法正常卸载,也可以把InstallShield Installation Information文件夹里相关的