Mhoro shamwari !. Tiri kutanga nhevedzano yezvinyorwa izvo zvatinotarisira kuti zvichabatsira. Isu tafunga kuvanyorera kune avo vanoda kuziva zvavanoshanda navo, uye vozviitira zvavo vega pasina zvinoenderana nesoftware yepamutemo, kana izvo zvisina hafu uye hafu yekutengesa.
Kunodiwa kuverenga ndiko OpenLDAP Software 2.4 Mutungamiri weMutungamiri. Ehe, muChirungu, nekuti tiri kushandisa software yakagadzirirwa uye yakanyorwa mumutauro weShakespeare. 🙂 Tinokurudzirawo zvakasimba kuverenga iyo Ubuntu Server Guide 12.04., iyo yatinopa kurodha pasi.
Zvinyorwa zviripo zviri muChirungu. Ini handina kuwana shanduro dzeSpanish dzeimwe yeyaviri akambokurudzirwa.
Zvese zvakanyorwa mune ino sumo zvinotorwa kubva kuWikipedia kana kushandurwa zvakasununguka muchiSpanish kubva kumagwaro ataurwa pamusoro.
Tichaona:
- Pfupiso tsananguro
- LDAP Makiyi Makuru kubva kuMushandisi Maonero
- Tinofanira kushandisa rini LDAP?
- Ndirini patisingafanirwe kushandisa LDAP?
- Ndeapi masevhisi uye software yatiri kuronga kuisa nekugadzirisa?
Pfupiso tsananguro
Kubva kuWikipedia:
LDAP ndicho chidimbu cheLightweight Directory Access Protocol (muSpanish Lightweight Directory Access Protocol) iyo inoreva nzira yekushandisa-chikamu inobvumidza mukana kune yakarairwa uye yakapihwa dhairekitori sevhisi kutsvaga ruzivo rwakasiyana munzvimbo yenetiweki. LDAP inoonekwawo sedhatabhesi (kunyangwe hurongwa hwayo hwekuchengetedza hungasiyana) hunogona kubvunzwa.
Dhairekitori seti yezvinhu zvine hunhu zvakarongedzwa nenzira inonzwisisika uye inoteerana. Muenzaniso wakajairika ndeye dhairekitori dhairekitori, iyo ine akateedzana emazita (vanhu kana masangano) akarongedzwa nearufabheti, zita rega rega riine kero uye nhamba yefoni yakasungirirwa pairi. Kuti urinzwisise zvirinani, ibhuku kana dhairekitori, umo makanyorwa mazita evanhu, nhamba dzenhare nekero, uye zvakarongedzwa nemavara.
LDAP dhairekitori yemuti dzimwe nguva inoratidza akasiyana mamiriro ezvematongerwo enyika, enzvimbo, kana ehurongwa, zvichienderana nemhando yakasarudzwa. Parizvino LDAP deployments inowanzo shandisa Domain Name System (DNS) mazita kuronga matunhu epamusoro ehurongwa. Sezvaunodongorera pasi dhairekitori, zvinyorwa zvinogona kuoneka zvinomiririra vanhu, zvikamu zvesangano, maprinta, zvinyorwa, mapoka evanhu, kana chero chinhu chinomiririra chakapihwa mukova mumuti (kana akawanda akanyorwa).
Kazhinji, inochengetedza iyo yekusimbisa ruzivo (zita rekushandisa uye password) uye inoshandiswa kuratidza, kunyangwe zvichikwanisika kuchengeta rumwe ruzivo (mushandisi wekubata data, nzvimbo yenzvimbo dzakasiyana netiweki, mvumo, zvitupa, nezvimwewo). Muchidimbu, LDAP inobatana yekuwana protocol kune seti yeruzivo pane network.
Iyo yazvino vhezheni ndeye LDAPv3, uye inotsanangurwa muRFCs RFC 2251 uye RFC 2256 (LDAP base gwaro), RFC 2829 (yechokwadi nzira yeLDAP), RFC 2830 (kuwedzerwa kweTLS), uye RFC 3377 (technical technical).
Kumwe kuita kweLDAP:
Active Directory: ndiro zita rinoshandiswa neMicrosoft (kubvira Windows 2000) sedura repakati reruzivo yeimwe yeanotungamira matunhu. A Dhairekitori Service inzvimbo yakarongedzwa yeruzivo nezvezvinhu zvakasiyana izvo zvine Dhairekitori Inoshanda, mune ino nyaya vanogona kunge vari maprinta, vashandisi, makomputa ... Inoshandisa zvirevo zvakasiyana (kunyanya, LDAP, DNS, DHCP, Kerberos...).
Pasi pezita iri pane schema chaiyo (tsananguro yeminda inogona kubvunzwa) LDAP vhezheni 3, iyo inobvumidza kubatanidza mamwe masisitimu anotsigira protocol. Iyi LDAP inochengeta ruzivo nezve vashandisi, zviwanikwa zvemambure, marongero ekuchengetedza, kumisikidza, kupihwa mvumo, nezvimwe.
Novell Dhairekitori ServicesIyo inozivikanwa zvakare seDirectory, ndiyo Novell yekushandisa inoshandiswa kugadzirisa kuwana zviwanikwa pane akasiyana maseva nemakomputa pane network. Iyo yakanyatsogadzirwa nedhijitari uye yechinhu-chakatarisana dhatabhesi, iyo inomiririra yega yega server, komputa, purinda, sevhisi, vanhu, nezvimwe. pakati payo mvumo dzinoitirwa kugadziriswa kwekuwana, kuburikidza nenhaka. Kubatsira kweichi chiitiko ndechekuti inomhanya pamapuratifomu akawanda, saka inogona kuchinjika nharaunda nharaunda dzinoshandisa inopfuura imwe sisitimu yekushandisa.
Iyo ndiyo inotungamira maererano neDhairekitori zvivakwa, sezvo yakaunzwa muna1990 neshanduro yeNovell Netware 4.0. Kunyangwe AD yaMicrosoft yakura mukuzivikanwa, haichakwanise kuenzana nekuvimbika uye mhando yeDirectory uye neCross-Platform kugona kwayo.
OpenLDAP: Iko kushandiswa kwemahara kweprotocol inotsigira akawanda zvirongwa kuitira kuti ishandiswe kubatana kune chero imwe LDAP. Iyo ine rezinesi yayo, iyo OpenLDAP Veruzhinji Rezinesi. Kuve chikuva chakazvimiririra protocol, akati wandei GNU / Linux uye BSD migove inosanganisa iyo, sezvinoita AIX, HP-UX, Mac OS X, Solaris, Windows (2000 / XP), uye z / OS.
OpenLDAP ine zvinhu zvina zvakakosha.
- slapd - yakamira yega LDAP daemon.
- slurpd - yakazvimirira LDAP yekudzokorora kudzokorora daemon.
- LDAP protocol inotsigira raibhurari maitiro
- Zvishandiso, maturusi uye vatengi.
LDAP Makiyi Makuru kubva kuMushandisi Maonero
Ndeapi mhando yeruzivo yatinogona kuchengeta muDirector?. Iyo yemhando yemhando mune yeLDAP dhairekitori yakavakirwa pa matikiti. Anopinda muunganidzwa wehunhu uyo une rimwe Rinosarudzika Zita kana "Rinosarudzika Zita (DN)". Iyo DN inoshandiswa kureva kupinda kwakasiyana.
Chinhu chega chega chekupinda chine mutsa uye imwe kana dzakawanda tsika. Iwo mhando anowanzo ari mnemonic tambo senge cn o "Zita Rinozivikanwa" remazita akajairika, kana tsamba kune email kero. Iyo syntax yemitengo inoenderana nerudzi rwehunhu.
Semuenzaniso, hunhu cn inogona kuve nemutengo we Frodo mabhegi. Hunhu tsamba unogona kuva neushingi frodobagins@amigos.cu. Hunhu jpgePhoto inogona kuva nemufananidzo mune bhajitari fomati JPEG.
Ruzivo rwakarongwa sei?. MuLDAP, zvinyorwa zvinyorwa zvakarongeka mumhando yepamusoro semuti wakashandurwa. Pachivanhu, chimiro ichi chinoratidza mamiriro enzvimbo uye / kana ehurongwa miganho.
Mapindiro anomiririra nyika anoonekwa kumusoro kwemuti. Pazasi pavo panenge paine zvinyorwa zvinomirira nyika nemasangano emunyika.
Ipapo panogona kuve nezvakanyorwa zvinomiririra zvikamu zvesangano, vanhu, maprinta, zvinyorwa, kana chero chimwe chinhu chatinokwanisa kufunga nezvacho.
Iyo nhamba pazasi muenzaniso weiyo LDAP dhairekitori muti umo mazita echinyakare anoshandiswa.
LDAP inobvumira kudzora kwehunhu hwatinoda hwekupinda nekushandisa yakasarudzika hunhu inonzi objectClass. Iko kukosha kwehunhu objectClass inosarudza iyo Mitemo yeZano o Schema Mitemo kuti iko kuiswa kunofanira kuteerera.
Isu tinotaurisa sei ruzivo?. Isu tinoreva kunopinda neZita rakakurumbira kana Zita Rinokudzwa, Iyo yakavakwa kubva kuzita rekupinda iro pachayo (inonzi Rinosarudzika Rinoenderana Zita rekuti kana Rinoenderana Rinosarudzika Zita o DAM), Yakabatanidzwa nezita rezvinyorwa zvemadzitateguru avo kana madzitateguru.
Semuenzaniso, mumufananidzo uri pamusoro wekupinda Frodo Bagins ane DAM cn = Frodo Bagins uye iyo DN kukwana kuri cn = Frodo Bagins, ou = Mhete, o = Shamwari, st = Havana, c = cu.
Isu tinowana sei ruzivo?. LDAP yakatsanangura mashandiro anodikanwa kuti ubvunze uye kugadzirisa dhairekitori. Izvi zvinosanganisira mashandiro ekuwedzera nekubvisa kupinda, kugadzirisa iko kuripo, uye kutumidza zvakare kupinda.
Nekudaro, yakawanda yenguva iyo LDAP inoshandiswa kutsvaga ruzivo rwakachengetwa mudhairekitori. Tsvagiridzo dzekutsvaga dzinobvumidza chikamu che dhairekitori kuti chitsvage zvinyorwa zvinosangana nemimwe miitiro yakatsanangurwa mufirita yekutsvaga. Nenzira iyoyo isu tinokwanisa kutsvaga chega chega chekupinda icho chakazadzisa nzira dzekutsvaga.
Tinodzivirira sei ruzivo kubva kune rusununguko rusina kuwanikwa?. Mamwe madhairekitori masevhisi haana kudzivirirwa uye anotendera chero munhu kuona ruzivo rwako.
LDAP inopa mashandiro evatengi kuti vabvumikise, kana kusimbisa kuzivikanwa kwavo kune dhairekitori sevhisi, kuitira kuvimbisa mukana wekutonga kuchengetedza ruzivo rwune server.
LDAP inotsigirawo data kuchengetedza masevhisi, zvese zvine chekuita nekuvimbika uye kuvanzika.
Tinofanira kushandisa rini LDAP?
Uyu mubvunzo wakanaka kwazvo. Muzhinji, isu tinofanirwa kushandisa iyo Dhairekitori Sevhisi kana tichida ruzivo kuti ruchengetwe nepakati uye nekuchengetedzwa, uye kuwanikwe kuburikidza nemaitiro-akavakirwa nzira.
Mimwe mienzaniso yerudzi rweruzivo rwatinowana mune bhizinesi uye maindasitiri nharaunda.
- Muchina Kusimbisa
- Mushandisi Kusimbiswa
- Vashandisi veSystem uye Mapoka
- Kero kero
- Mumiririri weSangano
- Resource Kutsvaga
- Runhare Ruzivo Warehouse
- Mushandisi Resource Management
- Email Kero Kutsvaga
- Kunyorera Kugadzira Chitoro
- PBX Runhare Kudyara Kugadziridza Warehouse
- nezvimwe…
Kune akatiwandei Akagoverwa Schema Mafaira -Yakagoverwa Schemas Mafaira- zviyero-zvakavakirwa. Nekudaro, isu tinogona kugara tichigadzira yedu yega Schema Tsananguro ... kana isu tiri LDAP Nyanzvi. 🙂
Ndirini patisingafanirwe kushandisa LDAP?
Patinoona kuti isu tiri kumonyanisa kana nekumanikidza yedu LDAP kuita izvo zvatinoda. Pakadaro, zvinogona kuda kugadziriswazve. Kana kana isu tichida imwechete application kuti ishandise uye kushandisa yedu data.
Ndeapi masevhisi uye software yatiri kuronga kuisa nekugadzirisa?
- Dhairekitori Sevhisi kana Directory Services maererano OpenLDAP
- Nezvedu NTP, DNS y DHCP independent
- Gadzira Samba kuLDAP
- Zvichida isu tichavandudza kusangana kwe LDAP y Kerberos
- Manage iyo Dhairekitori newebhu kunyorera Ldap Akaunti Manager.
Uye izvi ndezve nhasi, shamwari!
Masosi akabvunzwa:
- https://wiki.debian.org/LDAP
- OpenLDAP Software 2.4 Mutungamiri weMutungamiri
- Ubuntu 12.04 server guide
Ini ndinofunga FreeIPA chirongwa chakazara (LDAP, Kerberos, DNS, nezvimwewo) chinonakidza kudzidza, zvichibva pane LDAP 389 server.
Kutanga nema liks ePfs haashande. Ndiri kufarira kwazvo kuzvidzidzisa mu ldap. Kutenda nekugovana.
Zvisungo zvakagadziriswa.
Inonakidza.
Wakaenda parunhare, imwezve nguva!
Mupiro mukuru.
Kumbundirana! Paul.
Ndatenda mese nekupindura !!! Ini handina kukwanisa kubatanidza kare nemodem yangu pa28000 baud / sekondi. Kurumidzai kurudzii. 🙂
Kwaziso kune vose
Ndatenda zvikuru munhu wese wekutaura !!!. Ozkar, FreeIPA yakawanda kupfuura LDAP. Iyo inosanganisa Red Hat Inoshanda Dhairekitori 389 ine yakazara nhevedzano yemasevhisi anoenderana. Iyo Fedora chirongwa mhuka. Yakakura kwazvo kuzivo yangu ine mwero.
Yakanaka chinyorwa, inokodzera ini segirovhosi sezvo ini ndanga ndichironga kuti ndizviise mukati mangu mune idzi nyaya, ndiri kutarisira zvinyorwa zvitsva.
Ndatenda zvikuru nekugovana, neizvozvo uye iyo ClearOS yandinayo kwechinguva 🙂
Yakanaka dzidziso, ini zvakare ndatora pasi bhuku reUbunto, ndatenda!
Ubuntu jejjeej Ndichakarara ...
Kunyangwe kusaremekedza basa rako, ndakariverenga pamusoro uye kana ndikanzwisisa zvese zvisirizvo kana zvishoma, zvinogona kunzwisiswa mune iyi joke:
"Asi kana ndikava capo capo yeakavhurika-ldap ini ndinokudziridza webhu bhurawuza rangu uye google inodedera!"
Kutenda nekuedza uye zvinorwadza kuti hapana chinyorwa muSpanish. mmm ...
Fico, ona kana iri gwaro muchiSpanish rinoshanda kuwedzera pane icho chinhu ...
http://www.google.com.ar/url?sa=t&rct=j&q=&esrc=s&source=web&cd=4&ved=0CEwQFjAD&url=http%3A%2F%2Felpuig.xeill.net%2Fdepartaments%2Finformatica%2Ffitxers%2Fsistemes-operatius%2Fcurso-de-ldap-en-gnu-linux%2Fat_download%2Ffile&ei=NwXgUrIOxLaRB4LHgYgG&usg=AFQjCNGj7BjNtzfdlu1gsl3YSWK1U1ELpw&sig2=aKABXgHookIGYhYXevUQew&bvm=bv.59568121,d.eW0
Iye zvino ndichienda kumberi zvishoma ini ndinoramba ndichiverenga zvakatumirwa papeji https://blog.desdelinux.net/ldap-introduccion/ Ndinoda iwe kuti ujekese zvishoma izvo zvinoreva Machine Kuvimbiswa, iyi poindi haina kujeka kwandiri uye ndinofarira zvikuru nezve OpenLdap iyi ndatova ndakaita maawa akati wandei ndichiverenga iyi blog asi ini ndoda kugona kugona misoro nemifungo. nekuda kwechikonzero ichocho kupindira mumabasa ako nguva isati yasvika ndinokutendai zvikuru VaFico tinoenderera mberi mukukwazisa