Manually Configuring an LDAP Server

YaST does not use /etc/openldap/slapd.conf to store the OpenLDAP configuration anymore. YaST uses OpenLDAP's dynamic configuration database (back-config) to store the LDAP server's configuration. For details about the dynamic configuration backend please see the slapd-config(5) man page or the OpenLDAP Software 2.4 Administrator's Guide located at /usr/share/doc/packages/openldap2/guide/admin/guide.html on this system if the openldap2 package is installed.

In case of a system update, a copy of the original /etc/openldap/slapd.conf file will get created as /etc/openldap/slapd.conf.YaSTsave.

To conveniently access the new configuration backend, you can use SASL external authentication. For example, the following ldapsearch command executed as root can be used to print the complete slapd configuration to stdout:

ldapsearch -Y external -H ldapi:/// -b cn=config

Starting and Stopping the Servers

Once the LDAP server is fully configured and all desired entries have been made according to the pattern described in Section 4.8, “Manually Administering LDAP Data”, start the LDAP server as root by entering rcldap start. To stop the server manually, enter the command rcldap stop. Request the status of the running LDAP server with rcldap status.

The YaST runlevel editor, described in Abschnitt „Konfigurieren von Systemdiensten (Runlevel) mit YaST“ (Kapitel 16, Booten und Konfigurieren eines Linux-Systems, ↑Referenz), can be used to have the server started and stopped automatically on bootup and shutdown of the system. It is also possible to create the corresponding links to the start and stop scripts with the insserv command from a command prompt as described in Abschnitt „Init-Skripten“ (Kapitel 16, Booten und Konfigurieren eines Linux-Systems, ↑Referenz).