Différences
Ci-dessous, les différences entre deux révisions de la page.
tuto:linux_divers:installer_fusiondirectory_centos_6 [02/08/2013 11:20] dani |
tuto:linux_divers:installer_fusiondirectory_centos_6 [05/09/2013 17:19] |
||
---|---|---|---|
Ligne 1: | Ligne 1: | ||
- | ====== Installer FusionDirectory sur CentOS 6 ====== | ||
- | <note important> | ||
- | |||
- | Dans ce how-to, nous allons mettre en place [[http:// | ||
- | * Les groupes et utilisateurs | ||
- | * Samba | ||
- | * DHCP | ||
- | * DNS | ||
- | * les utilisateurs LDAP système (branche DSA) | ||
- | |||
- | Deux serveurs seront mis en place: | ||
- | * Le premier exécutera OpenLDAP | ||
- | * Le second hébergera l' | ||
- | |||
- | ===== Prérequis ===== | ||
- | Deux serveurs (possible de tout déployer sur un seul également) sous CentOS 6.4 x86_64. Le dépôt EPEL est configuré et activé | ||
- | |||
- | ===== Configuration des dépôts ===== | ||
- | Il faut ajouter le dépôt FusionFirectory | ||
- | |||
- | <code bash> | ||
- | cat <<' | ||
- | [fusiondirectory] | ||
- | name=Fusiondirectory Packages for RHEL / CentOS 6 | ||
- | baseurl=http:// | ||
- | enabled=1 | ||
- | gpgcheck=1 | ||
- | gpgkey=http:// | ||
- | EOF | ||
- | </ | ||
- | |||
- | ===== Préparer l' | ||
- | <code bash> | ||
- | mkdir / | ||
- | chmod 700 / | ||
- | echo ' | ||
- | echo ' | ||
- | echo ' | ||
- | echo ' | ||
- | echo ' | ||
- | echo ' | ||
- | echo ' | ||
- | openssl rand -base64 33 | perl -pe ' | ||
- | openssl rand -base64 33 | perl -pe ' | ||
- | openssl rand -base64 33 | perl -pe ' | ||
- | openssl rand -base64 33 | perl -pe ' | ||
- | </ | ||
- | |||
- | ===== Installer OpenLDAP ===== | ||
- | Sur le serveur LDAP | ||
- | |||
- | * installer OpenLDAP: | ||
- | |||
- | <code bash> | ||
- | yum install openldap-servers openldap-clients | ||
- | </ | ||
- | |||
- | * Installer les schemas | ||
- | <code bash> | ||
- | yum install fusiondirectory-schema | ||
- | </ | ||
- | |||
- | * Schema supplémentaires: | ||
- | |||
- | <hidden Récupérer et installer les 4 fichiers suivants dans / | ||
- | <file schema dhcp-fd.schema> | ||
- | attributetype ( 2.16.840.1.38414.1.203.4.1 | ||
- | NAME ' | ||
- | EQUALITY distinguishedNameMatch | ||
- | DESC 'The DN of the dhcpServer which is the primary server for the configuration.' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.2 | ||
- | NAME ' | ||
- | EQUALITY distinguishedNameMatch | ||
- | DESC 'The DN of dhcpServer(s) which provide backup service for the configuration.' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.3 | ||
- | NAME ' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | DESC ' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.4 | ||
- | NAME ' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | DESC 'The starting & ending IP Addresses in the range (inclusive), | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.5 | ||
- | NAME ' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | DESC 'This attribute contains the permit lists associated with a pool. Each permit list is defined as a separate value.' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.6 | ||
- | NAME ' | ||
- | EQUALITY integerMatch | ||
- | DESC 'The subnet mask length for the subnet. | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.7 | ||
- | NAME ' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | DESC ' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.8 | ||
- | NAME ' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | DESC ' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.9 | ||
- | NAME ' | ||
- | EQUALITY distinguishedNameMatch | ||
- | DESC 'The distinguished name(s) of the dhcpOption objects containing the configuration options provided by the server.' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.10 | ||
- | NAME ' | ||
- | EQUALITY distinguishedNameMatch | ||
- | DESC 'the distinguished name(s) of the dhcpHost objects.' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.11 | ||
- | NAME ' | ||
- | EQUALITY distinguishedNameMatch | ||
- | DESC 'The distinguished name(s) of pools.' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.12 | ||
- | NAME ' | ||
- | EQUALITY distinguishedNameMatch | ||
- | DESC 'The distinguished name(s) | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.13 | ||
- | NAME ' | ||
- | EQUALITY distinguishedNameMatch | ||
- | DESC 'The distinguished name(s) of the subnets.' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.14 | ||
- | NAME ' | ||
- | EQUALITY distinguishedNameMatch | ||
- | DESC 'The distinguished name of a client address.' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.15 | ||
- | NAME ' | ||
- | DESC 'The distinguished name(s) client addresses.' | ||
- | EQUALITY distinguishedNameMatch | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.16 | ||
- | NAME ' | ||
- | EQUALITY distinguishedNameMatch | ||
- | DESC 'The distinguished name(s) of a class(es) in a subclass.' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.17 | ||
- | NAME ' | ||
- | EQUALITY distinguishedNameMatch | ||
- | DESC 'The distinguished name(s) of subclass(es).' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.18 | ||
- | NAME ' | ||
- | EQUALITY distinguishedNameMatch | ||
- | DESC 'The distinguished name(s) of sharedNetworks.' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.19 | ||
- | NAME ' | ||
- | EQUALITY distinguishedNameMatch | ||
- | DESC 'The DN of dhcpService object(s)which contain the configuration information. Each dhcpServer object has this attribute identifying the DHCP configuration(s) that the server is associated with.' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.20 | ||
- | NAME ' | ||
- | DESC 'The version attribute of this object.' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.21 | ||
- | NAME ' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | DESC ' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.22 | ||
- | NAME ' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | DESC 'This stores information about the current binding-status of an address. | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.23 | ||
- | NAME ' | ||
- | EQUALITY generalizedTimeMatch | ||
- | DESC 'This is the time the current lease for an address expires.' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 SINGLE-VALUE ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.24 | ||
- | NAME ' | ||
- | EQUALITY generalizedTimeMatch | ||
- | DESC 'This is the time of the last state change for a leased address.' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 SINGLE-VALUE ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.25 | ||
- | NAME ' | ||
- | EQUALITY generalizedTimeMatch | ||
- | DESC 'This is the last time a valid DHCP packet was received from the client.' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 SINGLE-VALUE ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.26 | ||
- | NAME ' | ||
- | EQUALITY booleanMatch | ||
- | DESC 'This indicates whether the address was assigned via BOOTP.' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 SINGLE-VALUE ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.27 | ||
- | NAME ' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | DESC 'This is the name of the domain sent to the client by the server. | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.28 | ||
- | NAME ' | ||
- | EQUALITY integerMatch | ||
- | DESC 'This indicates the status of updating DNS resource records on behalf of the client by the DHCP server for this address. | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.29 | ||
- | NAME ' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | DESC 'This is the hostname that was requested by the client.' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.30 | ||
- | NAME ' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | DESC 'This is the actual hostname that was assigned to a client. It may not be the name that was requested by the client. | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.31 | ||
- | NAME ' | ||
- | EQUALITY distinguishedNameMatch | ||
- | DESC 'The distinguished name of a " | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.32 | ||
- | NAME ' | ||
- | EQUALITY distinguishedNameMatch | ||
- | DESC 'This is the distinguished name of a " | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.33 | ||
- | NAME ' | ||
- | EQUALITY octetStringMatch | ||
- | DESC 'If the client request was received via a relay agent, this contains information about the relay agent that was available from the DHCP request. | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 SINGLE-VALUE ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.34 | ||
- | NAME ' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | DESC 'The clients hardware address that requested this IP address.' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.35 | ||
- | NAME ' | ||
- | EQUALITY octetStringMatch | ||
- | DESC ' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 SINGLE-VALUE ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.36 | ||
- | NAME ' | ||
- | EQUALITY integerMatch | ||
- | DESC 'Delay in seconds corresponding to Delayed Service Parameter configuration, | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.37 | ||
- | NAME ' | ||
- | EQUALITY integerMatch | ||
- | DESC ' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.38 | ||
- | NAME ' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | DESC ' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.39 | ||
- | NAME ' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | DESC ' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.40 | ||
- | NAME ' | ||
- | EQUALITY distinguishedNameMatch | ||
- | DESC 'The DN of dhcpLocator object which contain the DNs of all DHCP configuration objects. There will be a single dhcpLocator object in the tree with links to all the DHCP objects in the tree' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 ) | ||
- | |||
- | attributetype | ||
- | NAME ' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | DESC ' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) | ||
- | |||
- | attributetype | ||
- | NAME ' | ||
- | EQUALITY octetStringMatch | ||
- | DESC ' | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.43 | ||
- | NAME ' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | DESC ' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.44 | ||
- | NAME ' | ||
- | EQUALITY distinguishedNameMatch | ||
- | DESC 'The DNs of TSIG Key to use in secure dynamic updates. In case of locator object, this will be list of TSIG keys. In case of DHCP Service, Shared Network, Subnet and DNS Zone, it will be a single key.' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.12) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.45 | ||
- | NAME ' | ||
- | EQUALITY distinguishedNameMatch | ||
- | DESC 'The DNs of DNS Zone. In case of locator object, this will be list of DNS Zones in the tree. In case of DHCP Service, Shared Network and Subnet, it will be a single DNS Zone.' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.12) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.46 | ||
- | NAME ' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | DESC 'IP address or DNS name of the server playing primary role in DHC Load Balancing and Fail over.' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.47 | ||
- | NAME ' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | DESC 'IP address or DNS name of the server playing secondary role in DHC Load Balancing and Fail over.' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.48 | ||
- | NAME ' | ||
- | EQUALITY integerMatch | ||
- | DESC 'Port on which primary server listens for connections from its fail over peer (secondary server)' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 | ||
- | | ||
- | attributetype ( 2.16.840.1.38414.1.203.4.49 | ||
- | NAME ' | ||
- | EQUALITY integerMatch | ||
- | DESC 'Port on which secondary server listens for connections from its fail over peer (primary server)' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.50 | ||
- | NAME ' | ||
- | EQUALITY integerMatch | ||
- | DESC ' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.51 | ||
- | NAME ' | ||
- | EQUALITY integerMatch | ||
- | DESC ' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.52 | ||
- | NAME ' | ||
- | EQUALITY integerMatch | ||
- | DESC 'Split between the primary and secondary servers for fail over purpose' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.53 | ||
- | NAME ' | ||
- | EQUALITY integerMatch | ||
- | DESC ' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.54 | ||
- | NAME ' | ||
- | EQUALITY distinguishedNameMatch | ||
- | DESC 'The DNs of Fail over peers. In case of locator object, this will be list of fail over peers in the tree. In case of Subnet and pool, it will be a single Fail Over Peer' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 ) | ||
- | |||
- | #List of all servers in the tree | ||
- | attributetype ( 2.16.840.1.38414.1.203.4.55 | ||
- | NAME ' | ||
- | EQUALITY distinguishedNameMatch | ||
- | DESC 'List of all DHCP Servers in the tree. Used by dhcpLocatorObject' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 ) | ||
- | |||
- | attributetype ( 2.16.840.1.38414.1.203.4.56 | ||
- | NAME ' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | DESC ' | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) | ||
- | |||
- | # Classes | ||
- | |||
- | objectclass ( 2.16.840.1.38414.1.203.6.1 | ||
- | NAME ' | ||
- | DESC ' | ||
- | SUP top | ||
- | MUST (cn) | ||
- | MAY ( dhcpPrimaryDN $ dhcpSecondaryDN $ dhcpServerDN $ dhcpSharedNetworkDN $ dhcpSubnetDN $ dhcpGroupDN $ dhcpHostDN $ dhcpClassesDN $ dhcpOptionsDN $ dhcpZoneDN $ dhcpKeyDN $ dhcpFailOverPeerDN $ dhcpStatements $dhcpComments $ dhcpOption) ) | ||
- | |||
- | objectclass ( 2.16.840.1.38414.1.203.6.2 | ||
- | NAME ' | ||
- | DESC 'This stores configuration information for a shared network.' | ||
- | SUP top | ||
- | MUST cn | ||
- | MAY ( dhcpSubnetDN $ dhcpPoolDN $ dhcpOptionsDN $ dhcpZoneDN $ dhcpStatements $dhcpComments $ dhcpOption) X-NDS_CONTAINMENT (' | ||
- | |||
- | objectclass ( 2.16.840.1.38414.1.203.6.3 | ||
- | NAME ' | ||
- | DESC 'This class defines a subnet. This is a container object.' | ||
- | SUP top | ||
- | MUST ( cn $ dhcpNetMask ) | ||
- | MAY ( dhcpRange $ dhcpPoolDN $ dhcpGroupDN $ dhcpHostDN $ dhcpClassesDN $ dhcpLeasesDN $ dhcpOptionsDN $ dhcpZoneDN $ dhcpKeyDN $ dhcpFailOverPeerDN $ dhcpStatements $ dhcpComments $ dhcpOption ) X-NDS_CONTAINMENT (' | ||
- | |||
- | objectclass ( 2.16.840.1.38414.1.203.6.4 | ||
- | NAME ' | ||
- | DESC 'This stores configuration information about a pool.' | ||
- | SUP top | ||
- | MUST ( cn $ dhcpRange ) | ||
- | MAY ( dhcpClassesDN $ dhcpPermitList $ dhcpLeasesDN $ dhcpOptionsDN $ dhcpZoneDN $dhcpKeyDN $ dhcpStatements $ dhcpComments $ dhcpOption ) | ||
- | X-NDS_CONTAINMENT (' | ||
- | |||
- | objectclass ( 2.16.840.1.38414.1.203.6.5 | ||
- | NAME ' | ||
- | DESC 'Group object that lists host DNs and parameters. This is a container object.' | ||
- | SUP top | ||
- | MUST cn | ||
- | MAY ( dhcpHostDN $ dhcpOptionsDN $ dhcpStatements $ dhcpComments $ dhcpOption ) | ||
- | X-NDS_CONTAINMENT (' | ||
- | |||
- | objectclass ( 2.16.840.1.38414.1.203.6.6 | ||
- | NAME ' | ||
- | DESC 'This represents information about a particular client' | ||
- | SUP top | ||
- | MUST cn | ||
- | MAY (dhcpLeaseDN $ dhcpHWAddress $ dhcpOptionsDN $ dhcpStatements $ dhcpComments $ dhcpOption) | ||
- | X-NDS_CONTAINMENT (' | ||
- | |||
- | objectclass ( 2.16.840.1.38414.1.203.6.7 | ||
- | NAME ' | ||
- | DESC ' | ||
- | SUP top | ||
- | MUST cn | ||
- | MAY (dhcpSubClassesDN $ dhcpOptionsDN $ dhcpStatements $ dhcpComments $ dhcpOption) | ||
- | X-NDS_CONTAINMENT (' | ||
- | |||
- | objectclass ( 2.16.840.1.38414.1.203.6.8 | ||
- | NAME ' | ||
- | DESC ' | ||
- | SUP top | ||
- | MUST cn | ||
- | MAY (dhcpClassData $ dhcpOptionsDN $ dhcpStatements $ dhcpComments $ dhcpOption) X-NDS_CONTAINMENT ' | ||
- | |||
- | objectclass ( 2.16.840.1.38414.1.203.6.9 | ||
- | NAME ' | ||
- | DESC ' | ||
- | SUP top AUXILIARY | ||
- | MUST cn | ||
- | MAY ( dhcpOption $ dhcpComments ) | ||
- | X-NDS_CONTAINMENT | ||
- | |||
- | objectclass ( 2.16.840.1.38414.1.203.6.10 | ||
- | NAME ' | ||
- | DESC 'This class represents an IP Address, which may or may not have been leased.' | ||
- | SUP top | ||
- | MUST ( cn $ dhcpAddressState ) | ||
- | MAY ( dhcpExpirationTime $ dhcpStartTimeOfState $ dhcpLastTransactionTime $ dhcpBootpFlag $ dhcpDomainName $ dhcpDnsStatus $ dhcpRequestedHostName $ dhcpAssignedHostName $ dhcpReservedForClient $ dhcpAssignedToClient $ dhcpRelayAgentInfo $ dhcpHWAddress ) | ||
- | X-NDS_CONTAINMENT ( ' | ||
- | |||
- | objectclass ( 2.16.840.1.38414.1.203.6.11 | ||
- | NAME ' | ||
- | DESC 'This is the object that holds past information about the IP address. The cn is the time/date stamp when the address was assigned or released, the address state at the time, if the address was assigned or released.' | ||
- | SUP top | ||
- | MUST ( cn ) | ||
- | MAY ( dhcpAddressState $ dhcpExpirationTime $ dhcpStartTimeOfState $ dhcpLastTransactionTime $ dhcpBootpFlag $ dhcpDomainName $ dhcpDnsStatus $ dhcpRequestedHostName $ dhcpAssignedHostName $ dhcpReservedForClient $ dhcpAssignedToClient $ dhcpRelayAgentInfo $ dhcpHWAddress $ dhcpErrorLog) | ||
- | X-NDS_CONTAINMENT (' | ||
- | |||
- | objectclass ( 2.16.840.1.38414.1.203.6.12 | ||
- | NAME ' | ||
- | DESC 'DHCP Server Object' | ||
- | SUP top AUXILIARY | ||
- | MUST ( cn ) | ||
- | MAY (dhcpServiceDN | ||
- | X-NDS_CONTAINMENT (' | ||
- | |||
- | objectclass ( 2.16.840.1.38414.1.203.6.13 | ||
- | NAME ' | ||
- | DESC 'TSIG key for secure dynamic updates' | ||
- | SUP top | ||
- | MUST (cn $ dhcpKeyAlgorithm $ dhcpKeySecret ) | ||
- | MAY ( dhcpComments ) | ||
- | X-NDS_CONTAINMENT (' | ||
- | |||
- | objectclass ( 2.16.840.1.38414.1.203.6.14 | ||
- | NAME ' | ||
- | DESC 'DNS Zone for updating leases' | ||
- | SUP top | ||
- | MUST (cn $ dhcpDnsZoneServer ) | ||
- | MAY (dhcpKeyDN $ dhcpComments) | ||
- | X-NDS_CONTAINMENT (' | ||
- | |||
- | objectclass ( 2.16.840.1.38414.1.203.6.15 | ||
- | NAME ' | ||
- | DESC 'This class defines the Fail over peer' | ||
- | SUP top | ||
- | MUST ( cn $ dhcpFailOverPrimaryServer $ dhcpFailOverSecondaryServer $ dhcpFailoverPrimaryPort $ dhcpFailOverSecondaryPort) MAY (dhcpFailOverResponseDelay | ||
- | X-NDS_CONTAINMENT (' | ||
- | |||
- | objectclass ( 2.16.840.1.38414.1.203.6.16 | ||
- | NAME ' | ||
- | DESC ' | ||
- | SUP top | ||
- | MUST ( cn ) | ||
- | MAY ( dhcpServiceDN $dhcpServerDN $ dhcpSharedNetworkDN $ dhcpSubnetDN $ dhcpPoolDN $ dhcpGroupDN $ dhcpHostDN $ dhcpClassesDN $ dhcpKeyDN $ dhcpZoneDN $ dhcpFailOverPeerDN $ dhcpOption $ dhcpComments) | ||
- | X-NDS_CONTAINMENT (' | ||
- | |||
- | </ | ||
- | <file schema dnszone.schema> | ||
- | # A schema for storing DNS zones in LDAP | ||
- | # | ||
- | attributetype ( 1.3.6.1.4.1.2428.20.0.0 | ||
- | DESC 'An integer denoting time to live' | ||
- | EQUALITY integerMatch | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 ) | ||
- | |||
- | attributetype ( 1.3.6.1.4.1.2428.20.0.1 NAME ' | ||
- | DESC 'The class of a resource record' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) | ||
- | |||
- | attributetype ( 1.3.6.1.4.1.2428.20.0.2 NAME ' | ||
- | DESC 'The name of a zone, i.e. the name of the highest node in the zone' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | SUBSTR caseIgnoreIA5SubstringsMatch | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) | ||
- | |||
- | attributetype ( 1.3.6.1.4.1.2428.20.0.3 NAME ' | ||
- | DESC 'The starting labels of a domain name' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | SUBSTR caseIgnoreIA5SubstringsMatch | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) | ||
- | |||
- | attributetype ( 1.3.6.1.4.1.2428.20.1.12 NAME ' | ||
- | DESC ' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | SUBSTR caseIgnoreIA5SubstringsMatch | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) | ||
- | |||
- | attributetype ( 1.3.6.1.4.1.2428.20.1.13 NAME ' | ||
- | DESC 'host information, | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | SUBSTR caseIgnoreIA5SubstringsMatch | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) | ||
- | |||
- | attributetype ( 1.3.6.1.4.1.2428.20.1.14 NAME ' | ||
- | DESC ' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | SUBSTR caseIgnoreIA5SubstringsMatch | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) | ||
- | |||
- | attributetype ( 1.3.6.1.4.1.2428.20.1.16 NAME ' | ||
- | DESC 'text string, RFC 1035' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | SUBSTR caseIgnoreIA5SubstringsMatch | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) | ||
- | |||
- | attributetype ( 1.3.6.1.4.1.2428.20.1.18 NAME ' | ||
- | DESC 'for AFS Data Base location, RFC 1183' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | SUBSTR caseIgnoreIA5SubstringsMatch | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) | ||
- | |||
- | attributetype ( 1.3.6.1.4.1.2428.20.1.24 NAME ' | ||
- | DESC ' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | SUBSTR caseIgnoreIA5SubstringsMatch | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) | ||
- | |||
- | attributetype ( 1.3.6.1.4.1.2428.20.1.25 NAME ' | ||
- | DESC 'Key, RFC 2535' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | SUBSTR caseIgnoreIA5SubstringsMatch | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) | ||
- | |||
- | attributetype ( 1.3.6.1.4.1.2428.20.1.28 NAME ' | ||
- | DESC 'IPv6 address, RFC 1886' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | SUBSTR caseIgnoreIA5SubstringsMatch | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) | ||
- | |||
- | attributetype ( 1.3.6.1.4.1.2428.20.1.29 NAME ' | ||
- | DESC ' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | SUBSTR caseIgnoreIA5SubstringsMatch | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) | ||
- | |||
- | attributetype ( 1.3.6.1.4.1.2428.20.1.30 NAME ' | ||
- | DESC ' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | SUBSTR caseIgnoreIA5SubstringsMatch | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) | ||
- | |||
- | attributetype ( 1.3.6.1.4.1.2428.20.1.33 NAME ' | ||
- | DESC ' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | SUBSTR caseIgnoreIA5SubstringsMatch | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) | ||
- | |||
- | attributetype ( 1.3.6.1.4.1.2428.20.1.35 NAME ' | ||
- | DESC ' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | SUBSTR caseIgnoreIA5SubstringsMatch | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) | ||
- | |||
- | attributetype ( 1.3.6.1.4.1.2428.20.1.36 NAME ' | ||
- | DESC 'Key Exchange Delegation, RFC 2230' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | SUBSTR caseIgnoreIA5SubstringsMatch | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) | ||
- | |||
- | attributetype ( 1.3.6.1.4.1.2428.20.1.37 NAME ' | ||
- | DESC ' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | SUBSTR caseIgnoreIA5SubstringsMatch | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) | ||
- | |||
- | attributetype ( 1.3.6.1.4.1.2428.20.1.38 NAME ' | ||
- | DESC 'A6 Record Type, RFC 2874' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | SUBSTR caseIgnoreIA5SubstringsMatch | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) | ||
- | |||
- | attributetype ( 1.3.6.1.4.1.2428.20.1.39 NAME ' | ||
- | DESC ' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | SUBSTR caseIgnoreIA5SubstringsMatch | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) | ||
- | |||
- | attributetype ( 1.3.6.1.4.1.2428.20.1.43 NAME ' | ||
- | DESC ' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | SUBSTR caseIgnoreIA5SubstringsMatch | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) | ||
- | |||
- | attributetype ( 1.3.6.1.4.1.2428.20.1.44 NAME ' | ||
- | DESC 'SSH Key Fingerprint, | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | SUBSTR caseIgnoreIA5SubstringsMatch | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) | ||
- | |||
- | attributetype ( 1.3.6.1.4.1.2428.20.1.46 NAME ' | ||
- | DESC ' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | SUBSTR caseIgnoreIA5SubstringsMatch | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) | ||
- | |||
- | attributetype ( 1.3.6.1.4.1.2428.20.1.47 NAME ' | ||
- | DESC 'NSEC, RFC 3755' | ||
- | EQUALITY caseIgnoreIA5Match | ||
- | SUBSTR caseIgnoreIA5SubstringsMatch | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) | ||
- | |||
- | objectclass ( 1.3.6.1.4.1.2428.20.3 NAME ' | ||
- | SUP top STRUCTURAL | ||
- | MUST ( zoneName $ relativeDomainName ) | ||
- | MAY ( DNSTTL $ DNSClass $ | ||
- | ARecord $ MDRecord $ MXRecord $ NSRecord $ | ||
- | SOARecord $ CNAMERecord $ PTRRecord $ HINFORecord $ | ||
- | MINFORecord $ TXTRecord $ AFSDBRecord $ SIGRecord $ | ||
- | KEYRecord $ AAAARecord $ LOCRecord $ NXTRecord $ | ||
- | SRVRecord $ NAPTRRecord $ KXRecord $ CERTRecord $ | ||
- | A6Record $ DNAMERecord $ DSRecord $ SSHFPRecord $ | ||
- | RRSIGRecord $ NSECRecord ) ) | ||
- | </ | ||
- | <file schema dsa-fd-conf.schema> | ||
- | ## | ||
- | ## dsa-fd.schema - Needed by Fusion Directory for managing DSA | ||
- | ## | ||
- | |||
- | # Attributes | ||
- | attributetype ( 1.3.6.1.4.1.38414.13.1.1 NAME ' | ||
- | DESC ' | ||
- | EQUALITY caseExactIA5Match | ||
- | SUBSTR caseExactIA5SubstringsMatch | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 | ||
- | SINGLE-VALUE) | ||
- | |||
- | # Object Class | ||
- | objectclass ( 1.3.6.1.4.1.38414.13.2.1 NAME ' | ||
- | DESC ' | ||
- | SUP top AUXILIARY | ||
- | MUST ( cn ) | ||
- | MAY ( fdDSARDN ) ) | ||
- | </ | ||
- | <file schema samba-fd-conf.schema> | ||
- | ## | ||
- | ## fd-samba-conf.schema - Needed by FusionDirectory Samba Plugin for its configuration | ||
- | ## | ||
- | |||
- | # Attributes | ||
- | |||
- | # Samba settings | ||
- | |||
- | attributetype ( 1.3.6.1.4.1.38414.9.1.1 NAME ' | ||
- | DESC ' | ||
- | EQUALITY caseExactIA5Match | ||
- | SUBSTR caseExactIA5SubstringsMatch | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 | ||
- | SINGLE-VALUE ) | ||
- | |||
- | attributetype ( 1.3.6.1.4.1.38414.9.1.2 NAME ' | ||
- | DESC ' | ||
- | EQUALITY booleanMatch | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 | ||
- | SINGLE-VALUE ) | ||
- | |||
- | attributetype ( 1.3.6.1.4.1.38414.9.1.3 NAME ' | ||
- | DESC ' | ||
- | EQUALITY caseExactIA5Match | ||
- | SUBSTR caseExactIA5SubstringsMatch | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 | ||
- | SINGLE-VALUE ) | ||
- | |||
- | attributetype ( 1.3.6.1.4.1.38414.9.1.4 NAME ' | ||
- | DESC ' | ||
- | EQUALITY integerMatch | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 | ||
- | SINGLE-VALUE ) | ||
- | |||
- | attributetype ( 1.3.6.1.4.1.38414.9.1.5 NAME ' | ||
- | DESC ' | ||
- | EQUALITY caseExactIA5Match | ||
- | SUBSTR caseExactIA5SubstringsMatch | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 | ||
- | SINGLE-VALUE ) | ||
- | |||
- | attributetype ( 1.3.6.1.4.1.38414.9.1.6 NAME ' | ||
- | DESC ' | ||
- | EQUALITY booleanMatch | ||
- | SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 | ||
- | SINGLE-VALUE ) | ||
- | |||
- | |||
- | # Object Class | ||
- | objectclass ( 1.3.6.1.4.1.38414.9.2.1 NAME ' | ||
- | DESC ' | ||
- | SUP top AUXILIARY | ||
- | MUST ( ) | ||
- | MAY ( fdSambaMachineAccountRDN $ fdSambaIdMapping $ | ||
- | fdSambaSID $ fdSambaRidBase $ fdSambaExpirationSync $ fdSambaGenLMPassword) ) | ||
- | </ | ||
- | |||
- | </ | ||
- | |||
- | * Mise en place de la conf slapd | ||
- | |||
- | <code bash> | ||
- | cat <<' | ||
- | |||
- | </ | ||
- | |||
- | <code bash> | ||
- | sed -i -e " | ||
- | -e " | ||
- | </ | ||
- | |||
- | <code bash> | ||
- | mkdir -p / | ||
- | chown ldap:ldap / | ||
- | chown 770 / | ||
- | cat <<' | ||
- | # | ||
- | # Set the database in memory cache size. | ||
- | # | ||
- | set_cachesize | ||
- | # | ||
- | # Set log values. | ||
- | # | ||
- | set_lg_regionmax | ||
- | set_lg_max | ||
- | set_lg_bsize | ||
- | set_lg_dir | ||
- | EOF | ||
- | </ | ||
- | |||
- | <file ldif iit.ldif> | ||
- | dn: dc=firewall-services, | ||
- | dc: firewall-services | ||
- | o: Firewall Services | ||
- | ou: firewall-services | ||
- | description: | ||
- | objectClass: | ||
- | objectClass: | ||
- | objectClass: | ||
- | objectClass: | ||
- | |||
- | dn: ou=systems, | ||
- | objectClass: | ||
- | ou: systems | ||
- | |||
- | dn: ou=Computers, | ||
- | objectClass: | ||
- | ou: Computers | ||
- | |||
- | dn: ou=Groups, | ||
- | objectClass: | ||
- | objectClass: | ||
- | ou: Groups | ||
- | |||
- | dn: ou=Users, | ||
- | objectClass: | ||
- | objectClass: | ||
- | ou: Users | ||
- | |||
- | dn: ou=DSA, | ||
- | objectClass: | ||
- | objectClass: | ||
- | ou: DSA | ||
- | |||
- | dn: cn=samba, | ||
- | objectClass: | ||
- | objectClass: | ||
- | objectClass: | ||
- | userPassword:: | ||
- | cn: samba | ||
- | |||
- | dn: cn=dhcp, | ||
- | objectClass: | ||
- | objectClass: | ||
- | objectClass: | ||
- | userPassword:: | ||
- | cn: dhcp | ||
- | |||
- | dn: cn=unix, | ||
- | objectClass: | ||
- | objectClass: | ||
- | objectClass: | ||
- | userPassword:: | ||
- | cn: unix | ||
- | </ | ||
- | |||
- | <code bash> | ||
- | slapadd -f init.ldif | ||
- | chown -R ldap:ldap / | ||
- | </ |