File: slapd.README.Debian

package info (click to toggle)
openldap2 2.1.30-8
  • links: PTS
  • area: main
  • in suites: sarge
  • size: 13,320 kB
  • ctags: 9,329
  • sloc: ansic: 127,414; sh: 18,958; cpp: 3,897; sql: 1,490; makefile: 1,221; perl: 843
file content (56 lines) | stat: -rw-r--r-- 2,516 bytes parent folder | download | duplicates (2) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
 
Notes about Debian's slapd package
----------------------------------

++ When upgrading from OpenLDAP 2.0

   Starting with OpenLDAP 2.1, backend modules are compiled as dynamically
   loadable shared objects in Debian. As a consequence thereof, you need to
   specify the path of the modules and the modules to load in your slapd.conf
   file for now. This can be done by lines such as the following:
   
   modulepath      /usr/lib/ldap
   moduleload      back_bdb
   
   for the BDB database backend module.
   
   While the BDB backend is the recommended choice of the OpenLDAP developers,
   the LDBM backend has proven to be more reliable for some Debian users,
   especially when the BDB database wasn't properly configured. When using the
   BDB backend, make sure to do so. For information on how to tune BDB, see
   http://www.openldap.org/faq/data/cache/893.html.
   
   To switch the database backend, you should export your current database
   in LDIF format with the slapcat command (be sure to stop slapd before
   doing so if you're using LDBM), move the old database files away, change
   /etc/ldap/slapd.conf, and then reimport your database from the LDIF file
   via slapadd.

++ TLS/SSL support

   Different to the official version, Debian's OpenLDAP packages are compiled
   with the GNUTLS library rather than with OpenSSL. This was necessary for
   other third-party packages licensed under the GPL (such as Samba) to be
   able to link with OpenLDAP. As of this version, Debian's GNUTLS extension
   has not been included in the official version of OpenLDAP; however, we
   are seeking for it to be included in the future.

++ If slapd depends on other service (such as SQL)

   In the event that you are running slapd with a different back-end module
   that depends on other programs (such as an SQL database) you may need to
   adjust the runlevels of slapd to start after the SQL database.

++ Creating NSS flat files from LDAP

   If you have need to create passwd/shadow/etc files from an LDAP
   directory there is now a script included with these Debian packages
   which may help you.  The script is in /usr/share/slapd/ and is named
   'ldiftopasswd'.  In general you should be able to do:
      ldapsearch | ldiftopasswd
   and it will generate the files for you.  You will need appropriate
   privileges, of course.

 -- The Debian OpenLDAP maintainers
     Torsten Landschoff <torsten@debian.org>
     Roland Bauerschmidt <rb@debian.org>
     Stephen Frost <sfrost@debian.org>