参考資料 †参考URL: http://www.atmarkit.co.jp/flinux/rensai/apache2_07/apache07a.html サーバ側の設定 †
yum -y install openldap*
# slappasswd New password: なんか適当に(とりあえずルーパス) Re-enter new password:
vi /etc/openldap/slapd.conf suffix "dc=ics" rootdn "cn=Manager,dc=ics" rootpw {SSHA}HOGEHOGEHOGE <<<<<========= snip =========>>>>> access to attrs=userPassword by self write by dn="cn=Manager,dc=ics" by anonymous auth by * none access to * by dn="cn=Manager,dc=ics" by self write by * read
BASE dc=ics
base dc=ics
/etc/rc.d/init.d/ldap start
chkconfig ldap on
vi /usr/share/openldap/migration/migrate_common.ph $DEFAULT_MAIL_DOMAIN = "ics.keio.ac.jp"; $DEFAULT_BASE = "dc=ics";
# vi ~/base.ldif dn:dc=asap objectClass:dcObject objectClass:organization o:asap Organization dc:asap dn: cn=Manager,dc=asap objectClass: organizationalRole cn: Manager dn: ou=People,dc=asap objectClass: organizationalUnit ou: People dn: ou=Group,dc=asap objectClass: organizationalUnit ou: Group
ldapadd -h localhost -x -D "cn=Manager,dc=asap" -W -f ~/base.ldif Enter LDAP Password: [パスフレーズを入力] adding new entry "dc=asap" adding new entry "cn=Manager,dc=asap" adding new entry "ou=People,dc=asap" adding new entry "ou=Group,dc=asap" オレオレ証明書の作成 †# vi /etc/pki/tls/openssl.cnf Country, Organization等の項目をあらかじめ設定しておくとラク |