On Mon, July 25, 2011 14:17, Andreas Laesser wrote: > Hi @all > > I've some questions regarding the "new" config interface from LDAP > cn=config. > For one month I was trying to set up a MultiMaster configuration with > GSSAPI-auth (Kerb5) over TLS/SSL for three servers. > I tried many ways to create a config with the cn=config interface but I > failed > every time. > > Now my question: Is there a tutorial or howto which describes exactly my > problem? Or does anybody run a bunch of server in this configuration? >
I've asked this question, but for some reason my post didn't make it to the list. I think you are supposed to create ldif files and use the slapadd to configure OpenLDAP. Seemed rather annoying to me, so I resort to editing slapd.conf and then running: /etc/init.d/slapd stop cd /etc/openldap rm -Rf slapd.d mkdir slapd.d slaptest -f slapd.conf -F slapd.d chown -R ldap:ldap slapd.d /etc/init.d/slapd start I know it beats the object of being able to make runtime changes to cn=config, but with lack of readable documentation, and the fact that I'm in test mode only, trying to learn OpenLDAP, this is the way I do it. We'll see if this message makes it to the list...
