6.0.0-alpha14
6/24/25
Last Modified 4/26/05 by ben
NewLDAPHowTo 4

Attachments

 dfg"><s>dfg
 hook_authldap.png
 ldap_horde_config.png
 ldap_pref_config.png

Using Horde with a New LDAP Directory

Written by Ben Chavet (ben [at] horde [dot] org)

Table of Contents

This document is intended to help administrators set up a new Horde 3 installation using a new LDAP directory. Installing and configuring an LDAP directory is outside the scope of this document. It is assumed that you have a working LDAP directory, and that we will be adding a new branch to it. Please feel free to fill in any gaps or to clarify any existing information presented here.

For starters, this will be a running progress of what I am doing to set up a working Horde installation using LDAP.

Document Standards

We will be using the following standards and assumptions throughout this document. Please adjust accordingly to your situation.

  • The LDAP directory is on the same machine we are installing Horde on.
    • LDAP directory security accounts are stored in ou=DSA,dc=example,dc=com, which already exists.
    • The LDAP directory does not allow anonymous binding.
    • The LDAP administrative account is cn=root,dc=example,dc=com.
    • OpenLDAP 2.1.29-1 running on a Fedora Core 2 machine is used for this example.

Configure the LDAP Directory

There are a variety of different methods we could use to configure the LDAP directory. The method presented here is far from being the most efficient. However, we are using it in order to explain what we are doing.

Create a Directory Security Account

First, we have to create the Directory Security Account that we will be using to bind and search with. Copy the following code into a file, and name it horde-dsa.ldif. Don't worry about the password, we will be setting that next.



dn: cn=horde,ou=DSA,dc=example,dc=com

objectclass: organizationalRole

objectClass: top

objectClass: simpleSecurityObject

userPassword: superSecretPassword

cn: horde

Then, run the following command to import the new account, you will be prompted for the LDAP root password.



ldapadd -x -h localhost -D "cn=root,dc=example,dc=com" -f horde-dsa.ldif -W

To set the password for this new account, run the following command. Be sure to replace secretpassword with what you actually want the password to be for this account. Again, you will be prompted for the LDAP root password.



ldappasswd -x -h localhost -D "cn=root,dc=example,dc=com" -s secretpassword -W cn=horde,ou=DSA,dc=example,dc=com

Create a New LDAP Branch

Next, we need to create a new branch in the LDAP directory where we will be storing all of horde's information. Copy the following code into a file, and name it horde.ldif



dn: ou=horde,dc=example,dc=com

objectclass: organizationalUnit

ou: horde

And, import it into the LDAP directory with the following command, you will be prompted for the LDAP root password.



ldapadd -x -h localhost -D "cn=root,dc=example,dc=com" -f horde.ldif -W
Home
Usage
Recent Changes
All Pages