LDAP
Материал из noname.com.ua
LDAP
Нужна минимальная инсталляция LDAP для интеграции CD/CD инструментов - gerrit и jenkins
OS: Ubunti 14.04
Подготовка
- add key
mkdir -p /root/.ssh /root/.ssh/authorized_keys
Установка пакетов:
sudo apt-get update sudo apt-get install slapd ldap-utils phpldapadmin mc vim strace tcpdump tcpflow
После установки
openldap 3945 0.0 0.2 194060 8276 ? Ssl 11:24 0:00 /usr/sbin/slapd -h ldap:/// ldapi:/// -g openldap -u openldap -F /etc/ldap/slapd.d root 5073 0.0 0.7 241084 22484 ? Ss 11:24 0:00 /usr/sbin/apache2 -k start www-data 5076 0.0 0.2 241108 7324 ? S 11:24 0:00 \_ /usr/sbin/apache2 -k start www-data 5077 0.0 0.2 241108 7324 ? S 11:24 0:00 \_ /usr/sbin/apache2 -k start www-data 5078 0.0 0.2 241108 7324 ? S 11:24 0:00 \_ /usr/sbin/apache2 -k start www-data 5079 0.0 0.2 241108 7324 ? S 11:24 0:00 \_ /usr/sbin/apache2 -k start www-data 5080 0.0 0.2 241108 7324 ? S 11:24 0:00 \_ /usr/sbin/apache2 -k start
Настройка
slapcat 56f012d9 ldif_read_file: checksum error on "/etc/ldap/slapd.d/cn=config.ldif" dn: dc=demo,dc=com objectClass: top objectClass: dcObject objectClass: organization o: demo dc: demo structuralObjectClass: organization entryUUID: f046b510-83c2-1035-8829-29ac45b577b5 creatorsName: cn=admin,dc=demo,dc=com createTimestamp: 20160321151131Z entryCSN: 20160321151131.872452Z#000000#000#000000 modifiersName: cn=admin,dc=demo,dc=com modifyTimestamp: 20160321151131Z dn: cn=admin,dc=demo,dc=com objectClass: simpleSecurityObject objectClass: organizationalRole cn: admin description: LDAP administrator userPassword:: e1NTSEF9cjVNc0tEUUkyRmlMNzRmYmYra1BLcENwY2xOZGw3eDA= structuralObjectClass: organizationalRole entryUUID: f0474e9e-83c2-1035-882a-29ac45b577b5 creatorsName: cn=admin,dc=demo,dc=com createTimestamp: 20160321151131Z entryCSN: 20160321151131.876381Z#000000#000#000000 modifiersName: cn=admin,dc=demo,dc=com modifyTimestamp: 20160321151131Z
ldapsearch -D "cn=admin,dc=demo,dc=com" -w r00tme # extended LDIF # # LDAPv3 # base <> (default) with scope subtree # filter: (objectclass=*) # requesting: ALL # # search result search: 2 result: 32 No such object # numResponses: 1
Jenkins
Manage Jenkins -> Configure Global Security --> LDAP