<HTML ><HEAD ><TITLE >LDAP Implementation HOWTO</TITLE ><META NAME="GENERATOR" CONTENT="Modular DocBook HTML Stylesheet Version 1.54"><LINK REL="NEXT" TITLE="$B35MW(B" HREF="overview.html"></HEAD ><BODY CLASS="ARTICLE" BGCOLOR="#FFFFFF" TEXT="#000000" ><DIV CLASS="ARTICLE" ><DIV CLASS="TITLEPAGE" ><H1 CLASS="TITLE" ><A NAME="AEN2" >LDAP Implementation HOWTO</A ></H1 ><DIV CLASS="AUTHORGROUP" ><A NAME="AEN5" ></A ><H3 CLASS="AUTHOR" ><A NAME="AEN6" >Roel van Meer</A ></H3 ><DIV CLASS="AFFILIATION" ><SPAN CLASS="ORGNAME" ><A HREF="http://www.linvision.com" TARGET="_top" >Linvision BV</A ><BR></SPAN ><DIV CLASS="ADDRESS" ><P CLASS="ADDRESS" > r.vanmeer@linvision.com<br> </P ></DIV ></DIV ><H3 CLASS="AUTHOR" ><A NAME="AEN15" >Giuseppe Lo Biondo</A ></H3 ><DIV CLASS="AFFILIATION" ><SPAN CLASS="ORGNAME" ><A HREF="http://www.mi.infn.it" TARGET="_top" >INFN MI</A ><BR></SPAN ><DIV CLASS="ADDRESS" ><P CLASS="ADDRESS" > giuseppe.lobiondo@mi.infn.it<br> </P ></DIV ></DIV ><P CLASS="OTHERCREDIT" ><B >$B9b66(B $BA4(B - </B ><SPAN CLASS="CONTRIB" >$BF|K\8lK]Lu(B</SPAN ><DIV CLASS="AFFILIATION" ><DIV CLASS="ADDRESS" ><P CLASS="ADDRESS" > arms405@jade.dti.ne.jp<br> </P ></DIV ></DIV ></P ></DIV ><P CLASS="PUBDATE" >v0.5, 2001-03-30<BR></P ><DIV CLASS="REVHISTORY" ><TABLE WIDTH="100%" BORDER="0" ><TR ><TH ALIGN="LEFT" VALIGN="TOP" COLSPAN="3" ><B >Revision History</B ></TH ></TR ><TR ><TD ALIGN="LEFT" >Revision 0.5</TD ><TD ALIGN="LEFT" >2001-03-30</TD ><TD ALIGN="LEFT" >Revised by: rvm</TD ></TR ><TR ><TD ALIGN="LEFT" COLSPAN="3" >Cleanup, fixes, overview rewritten.</TD ></TR ><TR ><TD ALIGN="LEFT" >Revision 0.4</TD ><TD ALIGN="LEFT" >2001-02-01</TD ><TD ALIGN="LEFT" >Revised by: rvm</TD ></TR ><TR ><TD ALIGN="LEFT" COLSPAN="3" >Added dns section.</TD ></TR ><TR ><TD ALIGN="LEFT" >Revision 0.3</TD ><TD ALIGN="LEFT" >2001-01-18</TD ><TD ALIGN="LEFT" >Revised by: rvm</TD ></TR ><TR ><TD ALIGN="LEFT" COLSPAN="3" >Added MTA sections.</TD ></TR ><TR ><TD ALIGN="LEFT" >Revision 0.2</TD ><TD ALIGN="LEFT" >2000-11-12</TD ><TD ALIGN="LEFT" >Revised by: glb</TD ></TR ><TR ><TD ALIGN="LEFT" COLSPAN="3" >Improved section on nss. Added sections about certificates and wrappers.</TD ></TR ></TABLE ></DIV ><DIV ><DIV CLASS="ABSTRACT" ><P ></P ><P >$B$3$NJ8=q$O%"%W%j%1!<%7%g%s$N%G!<%?$r(B LDAP $B%5!<%P$K5-O?$9$k$K$"$?$C$F$N(B $B5;=QE*$JB&LL$r@bL@$7$^$9!#>GE@$H$J$k$N$O!"<o!9$N%"%W%j%1!<%7%g%s$r(B LDAP $B$KBP1~$5$;$k$?$a$N@_DjJ}K!$G$9!#$^$?!"(BLDAP $B%G!<%?$r07$&$N$KLrN)$D(B $B%"%W%j%1!<%7%g%s$K$D$$$F$b=R$Y$F$$$^$9!#(B</P ><P ></P ></DIV ></DIV ><HR></DIV ><DIV CLASS="TOC" ><DL ><DT ><B >Table of Contents</B ></DT ><DT >1. <A HREF="overview.html" >$B35MW(B</A ></DT ><DD ><DL ><DT >1.1. <A HREF="overview.html#AEN56" >$B$J$<$3$N(B HOWTO $B$,$"$k$N$+!)(B</A ></DT ><DT >1.2. <A HREF="overview.html#AEN62" >$B2?$K$D$$$F$N$b$N$J$N$+!)(B</A ></DT ><DT >1.3. <A HREF="overview.html#AEN73" >$B2?$K$D$$$F!V$G$O$J$$!W$N$+!)(B</A ></DT ><DT >1.4. <A HREF="overview.html#AEN78" >$B<U<-(B</A ></DT ><DT >1.5. <A HREF="overview.html#AEN83" >Disclaimer ($BLH@U;v9`(B)</A ></DT ><DT >1.6. <A HREF="overview.html#AEN93" >Copyright and license ($BCx:n8"$HMxMQ5v2D(B)</A ></DT ></DL ></DD ><DT >2. <A HREF="pamnss.html" >pam_ldap $B$H(B nss_ldap $B$r;H$C$?(B LDAP $BG'>Z(B</A ></DT ><DD ><DL ><DT >2.1. <A HREF="pamnss.html#AEN124" >$B9=@.MWAG(B</A ></DT ><DD ><DL ><DT >2.1.1. <A HREF="pamnss.html#AEN127" >$BG'>Z(B $B!=(B PAM $B$H(B pam_ldap.so</A ></DT ><DT >2.1.2. <A HREF="pamnss.html#AEN133" >Name Service Switch $B$H(B nss_ldap.so</A ></DT ><DT >2.1.3. <A HREF="pamnss.html#AEN172" >Lightweight Directory Access Protocol</A ></DT ><DT >2.1.4. <A HREF="pamnss.html#AEN181" >Name Service Caching Daemon</A ></DT ><DT >2.1.5. <A HREF="pamnss.html#AEN185" >Secure Socket Layer</A ></DT ></DL ></DD ><DT >2.2. <A HREF="pamnss.html#AEN191" >$BG'>Z%7%9%F%`$N9=C[(B</A ></DT ><DD ><DL ><DT >2.2.1. <A HREF="pamnss.html#AEN209" >$B%5!<%PB&(B</A ></DT ><DD ><DL ><DT >2.2.1.1. <A HREF="pamnss.html#AEN215" >OpenLDAP $B$N%$%s%9%H!<%k$H@_Dj(B</A ></DT ></DL ></DD ><DT >2.2.2. <A HREF="pamnss.html#AEN239" >$B%/%i%$%"%s%HB&(B</A ></DT ><DD ><DL ><DT >2.2.2.1. <A HREF="pamnss.html#AEN253" >PAM LDAP $B$N%$%s%9%H!<%k$H@_Dj(B</A ></DT ><DT >2.2.2.2. <A HREF="pamnss.html#AEN277" >NSS LDAP $B$N%$%s%9%H!<%k$H@_Dj(B</A ></DT ><DT >2.2.2.3. <A HREF="pamnss.html#AEN298" >NSCD $B$N@_Dj(B</A ></DT ><DT >2.2.2.4. <A HREF="pamnss.html#AEN316" >LDAP $B%/%i%$%"%s%H$N@_Dj%U%!%$%k(B</A ></DT ></DL ></DD ></DL ></DD ><DT >2.3. <A HREF="pamnss.html#AEN331" >$B5/F0(B</A ></DT ><DT >2.4. <A HREF="pamnss.html#AEN346" >$B%"%+%&%s%H$NJ]<i4IM}(B</A ></DT ><DT >2.5. <A HREF="pamnss.html#AEN351" >$B4{CN$N@)8B;v9`(B</A ></DT ><DT >2.6. <A HREF="pamnss.html#AEN354" >$B%U%!%$%k$N%Q!<%_%C%7%g%s(B</A ></DT ></DL ></DD ><DT >3. <A HREF="radius.html" >LDAP $B$r;H$C$?(B Radius $BG'>Z(B</A ></DT ><DD ><DL ><DT >3.1. <A HREF="radius.html#AEN365" >FreeRadius $BHG(B Radiusd $B$N@_Dj(B</A ></DT ><DT >3.2. <A HREF="radius.html#AEN386" >Radius $BG'>Z$N%F%9%H(B</A ></DT ><DT >3.3. <A HREF="radius.html#AEN399" >Cisco IOS $B$N@_DjNc(B</A ></DT ></DL ></DD ><DT >4. <A HREF="samba.html" >Samba</A ></DT ><DT >5. <A HREF="dns.html" >DNS</A ></DT ><DD ><DL ><DT >5.1. <A HREF="dns.html#AEN418" >NSS $B$r;H$&(B</A ></DT ><DD ><DL ><DT >5.1.1. <A HREF="dns.html#AEN424" >$B@_Dj(B</A ></DT ><DT >5.1.2. <A HREF="dns.html#AEN439" >$B%9%-!<%^(B</A ></DT ></DL ></DD ><DT >5.2. <A HREF="dns.html#AEN448" >bind $B$r;H$&(B</A ></DT ><DD ><DL ><DT >5.2.1. <A HREF="dns.html#AEN451" >bind $B%X$N%Q%C%A(B</A ></DT ><DT >5.2.2. <A HREF="dns.html#AEN455" >ldap2dns</A ></DT ><DT >5.2.3. <A HREF="dns.html#AEN463" >ispman</A ></DT ></DL ></DD ></DL ></DD ><DT >6. <A HREF="sendmail.html" >$B%a!<%k%H%i%s%9%U%!%(!<%8%'%s%H(B (MTA)</A ></DT ><DD ><DL ><DT >6.1. <A HREF="sendmail.html#AEN471" >Sendmail</A ></DT ><DD ><DL ><DT >6.1.1. <A HREF="sendmail.html#AEN473" >Sendmail $B$K$*$1$k(B LDAP $B%5%]!<%H(B</A ></DT ><DT >6.1.2. <A HREF="sendmail.html#AEN490" >$B%7%9%F%`$NG[CV(B</A ></DT ><DT >6.1.3. <A HREF="sendmail.html#AEN506" >Sendmail $B@_Dj%U%!%$%k(B</A ></DT ><DT >6.1.4. <A HREF="sendmail.html#AEN538" >$B%9%-!<%^(B</A ></DT ><DT >6.1.5. <A HREF="sendmail.html#AEN635" >$B$5$i$J$k>pJs$N$?$a$K(B</A ></DT ></DL ></DD ><DT >6.2. <A HREF="sendmail.html#AEN647" >Postfix</A ></DT ><DD ><DL ><DT >6.2.1. <A HREF="sendmail.html#AEN649" >$B%5%]!<%H(B</A ></DT ><DT >6.2.2. <A HREF="sendmail.html#POSTCONF" >$B@_Dj(B</A ></DT ><DT >6.2.3. <A HREF="sendmail.html#AEN757" >$B@_DjNc(B</A ></DT ></DL ></DD ><DT >6.3. <A HREF="sendmail.html#AEN766" >qmail</A ></DT ></DL ></DD ><DT >7. <A HREF="address.html" >$B%"%I%l%9%V%C%/(B</A ></DT ><DT >8. <A HREF="roaming.html" >Netscape $B%m!<%_%s%0%"%/%;%9(B</A ></DT ><DT >9. <A HREF="certificates.html" >LDAP $B$K$h$k%G%8%?%k>ZL@=q$NH/9T(B</A ></DT ><DD ><DL ><DT >9.1. <A HREF="certificates.html#AEN822" >LDAP $B%5!<%P$N@_Dj(B</A ></DT ><DT >9.2. <A HREF="certificates.html#AEN841" >$B>ZL@=q$NH/9T(B</A ></DT ><DT >9.3. <A HREF="certificates.html#AEN862" >LDAP $BBP1~%/%i%$%"%s%H(B</A ></DT ></DL ></DD ><DT >10. <A HREF="ssl.html" >SSL/TLS $B$H!"(BSSL/TLS $B$N(B LDAP $BMQ%i%C%Q(B</A ></DT ><DD ><DL ><DT >10.1. <A HREF="ssl.html#AEN870" >SSL $B$N4JC1$J@bL@(B</A ></DT ><DT >10.2. <A HREF="ssl.html#AEN886" >OpenLDAP $B$N(B SSL/TLS $B%5%]!<%H(B</A ></DT ><DT >10.3. <A HREF="ssl.html#AEN893" >stunnel $B$r;H$C$F(B LDAP V2 $B%5!<%P$K(B SSL/TLS $B$rDs6!$9$kJ}K!(B</A ></DT ><DT >10.4. <A HREF="ssl.html#AEN929" >stunnel $B$r;H$C$F(B LDAP $B%/%i%$%"%s%H$K(B SSL $B$rDs6!$9$kJ}K!(B</A ></DT ><DT >10.5. <A HREF="ssl.html#AEN937" >stunnel $B$r;H$C$F(B slurpd $B%l%W%j%1!<%7%g%s$K(B SSL $B$rDs6!$9$kJ}K!(B</A ></DT ></DL ></DD ><DT >11. <A HREF="security.html" >$B%;%-%e%j%F%#4XO"(B</A ></DT ><DT >12. <A HREF="schemas.html" >LDAP $B%9%-!<%^(B</A ></DT ><DT >13. <A HREF="files.html" >$B%U%!%$%k$NNc(B</A ></DT ><DD ><DL ><DT >13.1. <A HREF="files.html#FILE-SCHEMA" >$B%9%-!<%^%U%!%$%k(B</A ></DT ><DT >13.2. <A HREF="files.html#AEN1318" >$B%Y!<%9(B LDIF $B$NNc(B</A ></DT ></DL ></DD ><DT >14. <A HREF="japanese.html" >$BF|K\8lLu$K$D$$$F(B</A ></DT ></DL ></DIV ></DIV ><DIV CLASS="NAVFOOTER" ><HR ALIGN="LEFT" WIDTH="100%"><TABLE WIDTH="100%" BORDER="0" CELLPADDING="0" CELLSPACING="0" ><TR ><TD WIDTH="33%" ALIGN="left" VALIGN="top" > </TD ><TD WIDTH="34%" ALIGN="center" VALIGN="top" > </TD ><TD WIDTH="33%" ALIGN="right" VALIGN="top" ><A HREF="overview.html" >Next</A ></TD ></TR ><TR ><TD WIDTH="33%" ALIGN="left" VALIGN="top" > </TD ><TD WIDTH="34%" ALIGN="center" VALIGN="top" > </TD ><TD WIDTH="33%" ALIGN="right" VALIGN="top" >$B35MW(B</TD ></TR ></TABLE ></DIV ></BODY ></HTML >