The SAMBA-LDAP-PDC Howto

Revision : 1.24

• verify that /var/lib/ldap exist and is owned by the user who run sladp (ldap user for
RedHat OpenLDAP packages),
• consult the OpenLDAP documentation.

4.3

Initial entries

Next, we’ll inject some initial entries on the brand new OpenLDAP server configured and started
above.
A sample LDIF file is presented on 22.2 on page 53. copy/paste it on a file named base.ldif
and add it using:
ldapadd -x -h localhost -D "cn=manager,dc=IDEALX,dc=ORG" -f base.ldif -W
(type your admin DN password, ’secret’ to complete the command)

4.4

smbldap-tools configuration

Finally, you must configure your smblda-tools to match your system and LDAP configuration : edit the /usr/local/sbin/smbldap conf.pm and configure it according to your LDAP
configuration (RootDN password and LDAP server @IP address).
You’ll find two confusing entry: slaveLDAP and masterLDAP. For our first example, those two
LDAP server will be the same one, but in a real life configuration, you may want to have a
slave server to serve all your read request, and one dedicated to write request. Anyway, in
the current example, as we build the PDC using Samba and OpenLDAP on the same host, you
should specify 127.0.0.01 for the two LDAP servers.
You’ll find some other configuration options in this configuration file: those are the default
values used by smbldap-tools when creating an account (user or computer). Feel free to
change those values if desired.

page 11/56