Commit 5f6e3111 authored by Birin Sanchez's avatar Birin Sanchez

Instructions to setup LDAP instance removed.

Signed-off-by: Birin Sanchez's avatarBirin Sanchez <birin.sanchez@puri.sm>
parent 93a33661
# Install OpenLDAP and LDAP utilities
```
sudo apt-get install slapd ldap-utils
```
Debian package manager will create a new DB for you with the top entry being you domainname broken up in domain components. For the domain 'example.com' this will be `dc=example,dc=com`. The package manager will also ask to set the admin password for the DB. This password should be the same you have set in the secret.ini config file.
You can check that LDAP service is working by listing the entries created by the installation:
```
ldapsearch -H ldap://localhost -b "dc=example,dc=com" -D "cn=admin,dc=example,dc=com" -W
```
If the above command does not succeed you can check the details of the DB created using this command:
```
sudo cat /etc/ldap/slapd.d/cn\=config/olcDatabase\=\{1\}mdb.ldif
```
`olcSuffix` value is your top entry and what should be used for `-b` parameter in the ldapsearch command. `olcRootDN` value should be used for `-D` parameter. The `-W` tells ldapsearch to prompt for password.
Modify the `reg_bases.ldif` to match your domain values and add the LDAP entries that will hold the groups and the people:
```
ldapadd -H ldap://localhost -D "cn=admin,dc=example,dc=com" -W -f /opt/purist/middleware_virtualenv/config_sample/ldap/reg_bases.ldif
```
This gives you a very basic LDAP environment suitable for development. Remember to set `AUTH_LDAP_START_TLS=False` in config.ini as this LDAP server has not been configured for TLS communication.
......@@ -82,7 +82,7 @@ Setup
* Run initial setup:
* `ldh_middleware collectstatic`
* `ldh_middleware migrate`
* Create the superuser. This requires a working LDAP configuration/environment. You can get a basic LDAP server running following instructions in [BASIC_LDAP.md](BASIC_LDAP.md). Once you have a working LDAP server you can run:
* Create the superuser. This requires a working LDAP configuration/environment. You can get a basic LDAP server running following [these](https://source.puri.sm/liberty/ldh_developer/wikis/ldap/install#ldap-manual-installation) instructions. Once you have a working LDAP server you can run:
* `ldh_middleware createsuperuser`
* Deactivate virtualenv (`deactivate`)
* Exit root user (`exit`)
......
# Replace the 'dc=example,dc=com' lines below by your domain name
# An organizational unit to store groups
dn: ou=groups,dc=example,dc=com
objectclass:organizationalunit
ou: groups
description: just groups
# An organizational unit to store people
dn: ou=people,dc=example,dc=com
objectclass:organizationalunit
ou: people
description: just people
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment