Différences
Ci-dessous, les différences entre deux révisions de la page.
Les deux révisions précédentes Révision précédente Prochaine révision | Révision précédente | ||
tuto:linux_divers:installer_fusiondirectory_centos_6 [02/08/2013 11:17] dani |
tuto:linux_divers:installer_fusiondirectory_centos_6 [05/09/2013 17:19] (Version actuelle) |
||
---|---|---|---|
Ligne 45: | Ligne 45: | ||
openssl rand -base64 33 | perl -pe ' | openssl rand -base64 33 | perl -pe ' | ||
openssl rand -base64 33 | perl -pe ' | openssl rand -base64 33 | perl -pe ' | ||
- | openssl rand -base64 33 | perl -pe ' | + | openssl rand -base64 33 | perl -pe ' |
+ | openssl rand -base64 33 | perl -pe ' | ||
</ | </ | ||
- | |||
===== Installer OpenLDAP ===== | ===== Installer OpenLDAP ===== | ||
Sur le serveur LDAP | Sur le serveur LDAP | ||
Ligne 796: | Ligne 796: | ||
</ | </ | ||
+ | <file ldif init.ldif> | ||
+ | dn: dc=firewall-services, | ||
+ | dc: firewall-services | ||
+ | o: Firewall Services | ||
+ | ou: firewall-services | ||
+ | description: | ||
+ | objectClass: | ||
+ | objectClass: | ||
+ | objectClass: | ||
+ | objectClass: | ||
+ | </ | ||
+ | |||
+ | <code bash> | ||
+ | sed -i -e " | ||
+ | -e " | ||
+ | </ | ||
+ | |||
+ | <code bash> | ||
+ | slapadd -f init.ldif | ||
+ | chown -R ldap:ldap / | ||
+ | </ | ||
+ | |||
+ | |||
+ | ===== En vrac ===== | ||
+ | <file ini named.conf> | ||
+ | options { | ||
+ | listen-on port 53 { 127.0.0.1; }; | ||
+ | directory | ||
+ | dump-file | ||
+ | statistics-file "/ | ||
+ | memstatistics-file "/ | ||
+ | allow-query | ||
+ | recursion no; | ||
+ | |||
+ | dnssec-enable no; | ||
+ | dnssec-validation no; | ||
+ | dnssec-lookaside auto; | ||
+ | |||
+ | /* Path to ISC DLV key */ | ||
+ | bindkeys-file "/ | ||
+ | |||
+ | managed-keys-directory "/ | ||
+ | }; | ||
+ | |||
+ | logging { | ||
+ | channel default_debug { | ||
+ | file " | ||
+ | severity dynamic; | ||
+ | }; | ||
+ | }; | ||
+ | |||
+ | zone " | ||
+ | type master; | ||
+ | database "ldap ldap:// | ||
+ | }; | ||
+ | |||
+ | zone " | ||
+ | type master; | ||
+ | database "ldap ldap:// | ||
+ | }; | ||
+ | |||
+ | </ | ||
+ | |||
+ | <file ini unbound.conf> | ||
+ | server: | ||
+ | verbosity: 1 | ||
+ | statistics-interval: | ||
+ | statistics-cumulative: | ||
+ | extended-statistics: | ||
+ | num-threads: | ||
+ | interface: 10.10.4.10 | ||
+ | interface-automatic: | ||
+ | do-ip6: no | ||
+ | access-control: | ||
+ | access-control: | ||
+ | chroot: "" | ||
+ | username: " | ||
+ | directory: "/ | ||
+ | log-time-ascii: | ||
+ | pidfile: "/ | ||
+ | hide-identity: | ||
+ | hide-version: | ||
+ | harden-glue: | ||
+ | harden-dnssec-stripped: | ||
+ | harden-below-nxdomain: | ||
+ | harden-referral-path: | ||
+ | use-caps-for-id: | ||
+ | unwanted-reply-threshold: | ||
+ | do-not-query-localhost: | ||
+ | prefetch: yes | ||
+ | prefetch-key: | ||
+ | dlv-anchor-file: | ||
+ | trusted-keys-file: | ||
+ | auto-trust-anchor-file: | ||
+ | val-clean-additional: | ||
+ | val-permissive-mode: | ||
+ | val-log-level: | ||
+ | include: / | ||
+ | |||
+ | remote-control: | ||
+ | control-enable: | ||
+ | |||
+ | stub-zone: | ||
+ | name: " | ||
+ | | ||
+ | |||
+ | forward-zone: | ||
+ | name: " | ||
+ | | ||
+ | | ||
+ | |||
+ | </ | ||
+ | |||
+ | <file ini slapd.conf> | ||
+ | include | ||
+ | include | ||
+ | include | ||
+ | include | ||
+ | include | ||
+ | include | ||
+ | include | ||
+ | include | ||
+ | include | ||
+ | include | ||
+ | include | ||
+ | include | ||
+ | include | ||
+ | include | ||
+ | include | ||
+ | include | ||
+ | include | ||
+ | include | ||
+ | include | ||
+ | include | ||
+ | include | ||
+ | include | ||
+ | include | ||
+ | include | ||
+ | |||
+ | password-hash | ||
+ | pidfile | ||
+ | loglevel | ||
+ | modulepath | ||
+ | moduleload | ||
+ | moduleload | ||
+ | database | ||
+ | database | ||
+ | mode 0600 | ||
+ | suffix | ||
+ | rootdn | ||
+ | rootpw | ||
+ | directory | ||
+ | cachesize | ||
+ | checkpoint | ||
+ | |||
+ | index | ||
+ | index | ||
+ | index | ||
+ | index | ||
+ | index | ||
+ | index | ||
+ | index | ||
+ | index | ||
+ | index | ||
+ | index | ||
+ | index | ||
+ | index | ||
+ | index | ||
+ | index | ||
+ | index | ||
+ | index | ||
+ | index | ||
+ | index | ||
+ | |||
+ | access to attrs=userPassword, | ||
+ | by dn=cn=samba, | ||
+ | by anonymous auth | ||
+ | by self write | ||
+ | by * none | ||
+ | access to attrs=sambaAcctFlags, | ||
+ | by dn=cn=samba, | ||
+ | by group.exact=" | ||
+ | by self read | ||
+ | by * none | ||
+ | access to filter=(objectClass=sambaDomain) | ||
+ | by dn=cn=samba, | ||
+ | by group.exact=" | ||
+ | by * none | ||
+ | access to dn.subtree=ou=Computers, | ||
+ | by dn=cn=samba, | ||
+ | by group.exact=" | ||
+ | by * none | ||
+ | access to attrs=loginShell, | ||
+ | by dn=cn=samba, | ||
+ | by self read | ||
+ | by dn=" | ||
+ | access to dn.subtree=ou=DSA, | ||
+ | by group.exact=" | ||
+ | by * none | ||
+ | access to dn.base=dc=firewall-services, | ||
+ | by * read | ||
+ | access to dn.subtree=ou=systems, | ||
+ | by group.exact=" | ||
+ | by dn=" | ||
+ | by * none | ||
+ | access to dn.regex=" | ||
+ | by * read | ||
+ | access to * | ||
+ | by users read | ||
+ | by anonymous auth | ||
+ | </ |