windows 2003 ldap服务器配置

LDAP服务

器:/openldap/openldap-2.2.29/openldap-2.2 .29-db-4.3.29-openssl-0.9.8a-win32_Setup.exe

如果上面的下载不了就用这个路径下载我

还要修改一个地方:在slapd.conf中把include

./schema/core.schema

改成：

include ./schema/core.schema

include ./schema/cosine.schema

include ./schema/misc.schema

include ./schema/inetorgperson.schema

原文：

Many commercial solutions are available to build an LDAP directory. However most products are either very expensive or not standards compliant (e.g. Active Directory).

OpenLDAP is an Opensource LDAP server designed for Unix platforms. A Windows release of this solution would be valuable for those who are stuck to a Microsoft Windows environment.

Thanks to Lucas Bergman, from FiveSight , such release is available. He developed the necessary patches and build process to deliver a binary package ready for use. The initial version hosted at FiveSight is no longer available, but Lucas keeps working on the windows port and built a new release, complete with installer:

( /hacks/openldap/ ). Lucas is now lucky enough to work mainly on Unix and Matthias Mohr has taken the lead. His updated builds are available at:

/openldap/openldap-2.2.29/openldap-2.2.29 -db-4.3.29-openssl-0.9.8a-win32_Setup.exe

For the impatients, or those who don't want to bother with config files, the Ilex company released another version with a more comprehensive installer, but an older version of OpenLDAP. This package is available at:

http://www.ilex.fr/openldap.htm .

Installation

Download the OpenLDAP installer from:

/openldap/openldap-2.2.29/openldap-2.2.29 -db-4.3.29-openssl-0.9.8a-win32_Setup.exe .

Launch the installer, select language, accept license and choose target installation directory. The default is: c:\Program Files\OpenLDAP . As spaces in directory names usually lead to trouble, choose another place, e.g.

c:\openldap .

Matthias improved the installer to automatically register OpenLDAP as an NT service and install BDB tools. Those are useful to fix a broken database after a system crash.

The installer let you choose service start up mode (auto or manual) and automatically builds a valid configuration. The OpenLDAP start up files are stored in c:\openldap\run , the directory data files end up in c:\openldap\var\openldap-data .

Configuration

The main OpenLDAP configuration file is slapd.conf . It has to be customized before launching the server.

This is just a quick start guide, please have a look at the official OpenLDAP documentation for more information.

∙Specify the Unicode data directory, by default: ./ucdata .

∙Choose the needed LDAP schemas. Schemas define directory structure, like columns and tables in a relational database. The core schema is mandatory, add the java schema if you intend to use

OpenLDAP as a JNDI server.

∙Configure the path for OpenLDAP pid and args start up files. The first contains the server pid, the second includes command line

arguments.

∙Choose the database type, by default bdb (Berkeley DB).

∙Specify the server suffix. All entries in the directory will have this suffix, which represents the root of the directory tree. For example, with suffix "dc=guessant,dc=org" , the fully qualified name of all

entries in the database will end with: dc=guessant,dc=org .

∙Define the name of the administrator entry for the server, named the rootdn , along with its password rootpw . This is the super user of the server. The rootdn name must match the suffix defined above. As

stated, all entry names must end with the suffix, and the rootdn is an entry.

Example configuration file:

ucdata-path ./ucdata

include ./schema/core.schema

pidfile ./run/slapd.pid

argsfile ./run/slapd.args

database bdb

suffix "dc=guessant,dc=org"

rootdn "cn=Manager,dc=guessant,dc=org"