6.0.0-git
2024-05-07
Last Modified 2005-04-26 by ben
NewLDAPHowTo 3

Attachments

 dfg"><s>dfg
 hook_authldap.png
 ldap_horde_config.png
 ldap_pref_config.png

Using Horde with a New LDAP Directory

Written by Ben Chavet (ben [at] horde [dot] org)

This document is intended to help administrators set up a new Horde 3 installation using a new LDAP directory. Installing and configuring an LDAP directory is outside the scope of this document. It is assumed that you have a working LDAP directory, and that we will be adding a new branch to it. Please feel free to fill in any gaps or to clarify any existing information presented here.

For starters, this will be a running progress of what I am doing to set up a working Horde installation using LDAP.

Document Standards

We will be using the following standards and assumptions throughout this document. Please adjust accordingly to your situation.

  • LDAP directory security accounts are stored in ou=DSA,dc=example,dc=com, which already exists.
    • The LDAP directory does not allow anonymous binding.
    • The LDAP administrative account is cn=root,dc=example,dc=com.
    • OpenLDAP 2.1.29-1 running on a Fedora Core 2 machine is used for this example.

Configuring the LDAP Directory

There are a variety of different methods we could use to configure the LDAP directory. The method presented here is far from being the most efficient. However, we are using it in order to explain what we are doing.

Creating a Directory Security Account

First, we have to create the Directory Security Account that we will be using to bind and search with. Copy the following code into a file, and name it horde-dsa.ldif. Don't worry about the password, we will be setting that next.


dn: cn=horde,ou=DSA,dc=example,dc=com

objectclass: organizationalRole

objectClass: top

objectClass: simpleSecurityObject

userPassword: superSecretPassword

cn: horde

Then, run the following command to import the new account, you will be prompted for the LDAP root password.


ldapadd -x -h localhost -D "cn=root,dc=example,dc=com" -f horde-dsa.ldif -W

To set the password for this new account, run the following command. Be sure to replace secretpassword with what you actually want the password to be for this account. Again, you will be prompted for the LDAP root password.


ldappasswd -x -h localhost -D "cn=root,dc=example,dc=com" -s secretpassword -W cn=horde,ou=DSA,dc=example,dc=com

Home
Usage
Recent Changes
All Pages