windows环境下OpenLDAP安装与客户端连接配置

2019独角兽企业重金招聘Python工程师标准>>>

1.下载安装OpenLDAP版本
C:\Users\Administrator>slapd -V
OpenLDAP 2.4.42 Standalone LDAP Server (slapd)

2.安装过程中，全部用默认的操作执行即可。

3.修改OpenLDAP文件如下：

# MDB Backend configuration file
# See slapd.conf(5) for details on configuration options.
# This file should NOT be world readable.
ucdata-path   ./ucdata
include       ./schema/core.schema
include       ./schema/cosine.schema
include       ./schema/nis.schema
include       ./schema/inetorgperson.schema
include       ./schema/openldap.schema
include       ./schema/dyngroup.schema

pidfile ./run/slapd.pid
argsfile ./run/slapd.args

# Enable TLS if port is defined for ldaps

TLSVerifyClient never
TLSCipherSuite HIGH:MEDIUM:-SSLv2
TLSCertificateFile ./secure/certs/server.pem
TLSCertificateKeyFile ./secure/certs/server.pem
TLSCACertificateFile ./secure/certs/server.pem

#######################################################################
# mdb database definitions
#######################################################################

database   mdb
suffix       "dc=maxcrc,dc=com"
rootdn       "cn=Manager,dc=maxcrc,dc=com"
# Cleartext passwords, especially for the rootdn, should
# be avoid. See slappasswd(8) and slapd.conf(5) for details.
# Use of strong authentication encouraged.
rootpw {SSHA}drJjDix6yL/v4cyZid5ADT/ej+RcI0RS

# The database directory MUST exist prior to running slapd AND
# should only be accessible by the slapd and slap tools.
# Mode 700 recommended.
directory ./data
searchstack 20
# Indices to maintain
index mail pres,eq
index objectclass pres
index default eq,sub
index sn eq,sub,subinitial
index telephonenumber
index cn

说明：suffix:支持的域后缀，"dc=maxcrc,dc=com"，表示支持maxcrc与com的域名，rootdn ：此OpenLDAP的根域。可根据自己的需求修改，rootpw：管理员密码：默认值secret，默认基于{SSHA}加密

可以根据：

C:\Users\Administrator>slappasswd
New password: 123
Re-enter new password: 123
{SSHA}2e49d0L/XomzoVsO+VuWQbC5qixCdKK/

命令修改：出现上面信息，表示修改成功。

2通过客户端工具连接：

连接工具：ldapbrowser