Setup OpenLdap Server

First setup a vserver as documented in http://www.idms-linux.org/tiki-index.php?page_ref_id=16

Extra Packages
Openldap and Openldap-servers need to be installed.

# vyum <vserver-name> -- install openldap openldap-servers

Copy the evolution schema file into /etc/openldap/shema/ directory and enable the schema files in /etc/openldap/slapd.conf file. It has to be loaded in the correct order because certain schema depend on others.

Basic slapd.conf

include         /etc/openldap/schema/core.schema
include         /etc/openldap/schema/amavisd-new.schema
include         /etc/openldap/schema/corba.schema
include         /etc/openldap/schema/dyngroup.schema
include         /etc/openldap/schema/cosine.schema
include         /etc/openldap/schema/inetorgperson.schema
include         /etc/openldap/schema/java.schema
include         /etc/openldap/schema/misc.schema
include         /etc/openldap/schema/nis.schema
include         /etc/openldap/schema/openldap.schema
include         /etc/openldap/schema/ppolicy.schema
include         /etc/openldap/schema/samba.schema
include         /etc/openldap/schema/evolutionperson.schema
include         /etc/openldap/schema/thunderbird.schema

loglevel 256  # very verbose logging to syslog local4.*

# Define global ACLs to disable default read access.

# Do not enable referrals until AFTER you have a working directory
# service AND an understanding of referrals.
#referral	ldap://root.openldap.org

pidfile		/var/run/openldap/slapd.pid
argsfile	/var/run/openldap/slapd.args


#######################################################################
# BDB database definitions
#######################################################################
database	bdb
suffix		"dc=<domain-name>,dc=<suffix>"
rootdn		"cn=Manager,dc=<domain-name>,dc=<suffix>"
# Cleartext passwords, especially for the rootdn, should
# be avoid.  See slappasswd(8) and slapd.conf(5) for details.
# Use of strong authentication encouraged.
rootpw		secretpassword
# The database directory MUST exist prior to running slapd AND 
# should only be accessible by the slapd and slap tools.
# Mode 700 recommended.
directory	/var/lib/openldap
# Indices to maintain
dbconfig set_cachesize 0 1048576 0 #cache sizes to use for the db
index mail pres,eq 
index	objectClass	eq
#
access to *
	by anonymous auth  # give anonymous access to auth against the ldapdb
	by users manage  # give authenticated user manage access to the ldapdb

Import LDIF files

First you need to create the base directory.

dn: dc=<domain-name>,dc=<suffix>
objectclass: dcObject
objectclass: organization
o: <domain-name> 
dc: <domain-name>

To create sub-domains or organizational units

dn: ou=<sub-domain>,dc=<domain>,dc=<suffix>
objectClass: top
objectClass: organizationalUnit
ou: <sub-domain>

---