Installing OpenLDAP with Webmin will require a lot of steps. I have created a BASH script to install OpenLDAP with Webmin in CentOS 6 servers. To install, simply download the installer script at here:
Installation example will be as below. I am using a freshly installed CentOS 6.3 64bit installed with minimal ISO, with wget and perl installed.
1. Download and extract the installer script:
$ cd /usr/local/src $ wget http://blog.secaserver.com/files/openldap_installer.sh |
2. Change the permission to 755:
$ chmod 755 openldap_installer.sh |
3. Execute the script and follow the wizard as example below:
$ ./openldap_installer.sh =========================================================== This script will install OpenLDAP It assumes that there is no OpenLDAP installed in this host SElinux will be disabled and firewall will be stopped =========================================================== What is the root domain? [eg mydomain.com]: majimbu.net What is the administrator domain? [eg ldap.majimbu.net or manager.majimbu.net]: ldap.majimbu.net What is the administrator password that you want to use?: MyN23pQ Do you want to install Webmin/Do you want me to configure your Webmin LDAP modules? [Y/n]: Y |
You should see the installation process output as below:
================================================================= Kindly review following details before proceed with installation: ================================================================= Hostname: ldap.majimbu.net Root DN: dc=majimbu,dc=net Administrator DN: cn=ldap,dc=majimbu,dc=net Administrator Password: MyN23pQ Webmin installation: Y ================================================================= Can I proceed with the installation? [Y/n]: Y Checking whether openldap-servers has been installed.. openldap-servers package not found. Proceed with installation Disabling SElinux and stopping firewall.. iptables: Flushing firewall rules: [ OK ] iptables: Setting chains to policy ACCEPT: filter [ OK ] iptables: Unloading modules: [ OK ] Installing OpenLDAP using yum.. Package cronie-1.4.4-7.el6.x86_64 already installed and latest version Package sudo-1.7.4p5-13.el6_3.x86_64 already installed and latest version OpenLDAP installed Configuring OpenLDAP database.. Configuring monitoring privileges.. Configuring database cache.. Generating SSL.. Generating a 2048 bit RSA private key ..........................+++ ......................+++ writing new private key to '/etc/openldap/certs/majimbu_key.pem' ----- You are about to be asked to enter information that will be incorporated into your certificate request. What you are about to enter is what is called a Distinguished Name or a DN. There are quite a few fields but you can leave some blank For some fields there will be a default value, If you enter '.', the field will be left blank. ----- Country Name (2 letter code) [XX]:MY State or Province Name (full name) []:Kuala Lumpur Locality Name (eg, city) [Default City]:Bukit Bintang Organization Name (eg, company) [Default Company Ltd]:Majimbu Net Corp Organizational Unit Name (eg, section) []:IT Common Name (eg, your name or your server's hostname) []:ldap.majimbu.net Email Address []:[email protected] Configuring LDAP service.. Checking OpenLDAP configuration.. config file testing succeeded OpenLDAP installation done. Starting SLAPD.. Starting slapd: [ OK ] Configuring LDAP client inside this host.. Checking the Webmin installation.. Webmin package not found in this host. Installing Webmin.. Retrieving http://www.webmin.com/download/rpm/webmin-current.rpm warning: /var/tmp/rpm-tmp.XmXunn: Header V3 DSA/SHA1 Signature, key ID 11f63c51: NOKEY Preparing... ########################################### [100%] Operating system is CentOS Linux 1:webmin ########################################### [100%] Webmin install complete. You can now login to http://ldap.majimbu.net:10000/ as root with your root password. Webmin installed. Configuring webmin LDAP server module.. Configuring webmin LDAP client module.. Installation completed! [ OK ] ============================================================================ You may need to open following port in firewall: 389, 636, 10000 Dont forget to refresh your Webmin module! Login to Webmin > Refresh Modules ============================================================================ |
4. Installation done. We need to refresh the Webmin module from the Webmin page. Login into Webmin > Refresh Modules:
5. You need to refresh again the Webmin page so the activated module will be listed in the side menu as screen shot below:
You can now start to create your LDAP object using your Webmin modules Webmin > Servers > LDAP Server. To add port exception into firewall rules, you can use following command:
$ iptables -I INPUT -m tcp -p tcp --dport 389 -j ACCEPT $ iptables -I INPUT -m tcp -p tcp --dport 636 -j ACCEPT $ iptables -I INPUT -m tcp -p tcp --dport 10000 -j ACCEPT |