solaris10+openldap+pureftpd
建立DN
# vi base-dn.ldif
dn: dc=netat,dc=com
objectclass: dcobject
objectclass: organization
o: netat.com
dc: netat
們建立RDN:
dn: cn=joe,dc=netat,dc=com
objectclass: person
objectClass: posixAccount
cn: joe
sn: joe
uid: joe
uidNumber: 5000
gidNumber: 5000
homeDirectory: /var/ftp
userPassword: {CRYPT}WEkBFPT.d2ong
用ldapadd添加ldif文件成功,並能在pureftpd上用joe的帳號成功登陸,現在我想給joe做磁碟配額等方面的限制,那個ldif文件應該怎麼寫呢?因為剛學openldap,對這個咚咚不是很了解。
曾經試過用:
chen.ldif
dn: cn=chen,dc=gdfz,dc=com
objectClass: person
objectClass: posixAccount
cn: chen
sn: chen
uid:chen
uidnumber:5001
gidNumber:5001
homeDirectory: /home/chen
userPassword: {crypt}$1$chen$y13/Ao8O3O/9jhSSCPFZg0
objectClass: PureFTPdUser
FTPStatus: enabled
FTPQuotaFiles: 50
FTPQuotaMBytes: 10
FTPDownloadBandwidth: 50
FTPUploadBandwidth: 50
FTPDownloadRatio: 5
FTPUploadRatio: 1
但是導不進去,報錯說:
ldap_add: invalid syntax (21)
additional info: FTPStatus: value #0 invalid per syntax
網上看過這個例子:
base-dn.ldif
dn: dc=gdfz,dc=com
objectClass: person
cn: gdfz
sn: gdfz
joe.ldif
dn: cn=joe,dc=gdfz,dc=com
objectClass: posixAccount
cn: joe
uid: joe
uidNumber: 500
gidNumber: 500
homeDirectory: /home/joe
userPassword: {crypt}saO3qRXM8wjUE
chen.ldif
# cat pureftpd.ldif
dn: uid=chen,dc=gdfz,dc=com
objectClass: posixAccount
cn: chen
uid:chen
uidnumber:501
gidNumber:501
homeDirectory: /home/chen
userPassword: {crypt}$1$chen$y13/Ao8O3O/9jhSSCPFZg0
objectClass: PureFTPdUser
FTPStatus: enabled
FTPQuotaFiles: 50
FTPQuotaMBytes: 10
FTPDownloadBandwidth: 50
FTPUploadBandwidth: 50
FTPDownloadRatio: 5
FTPUploadRatio: 1
但是我倒入該base-dn.ldif的時候報錯說什麼dc不存在!
配置文件:
# vi /usr/local/openldap/etc/openldap/pureftpd-ldap.conf
LDAPServer localhost
LDAPPort 389
LDAPBaseDN dc=netat,dc=com
LDAPBindDN cn=root,dc=netat,dc=com
LDAPBindPW ***** (明文)
# vi /usr/local/openldap/etc/openldap/slapd.conf
include /usr/local/openldap/etc/openldap/schema/core.schema
include /usr/local/openldap/etc/openldap/schema/pureftpd.schema
include /usr/local/openldap/etc/openldap/schema/cosine.schema
include /usr/local/openldap/etc/openldap/schema/nis.schema
include /usr/local/openldap/etc/openldap/schema/corba.schema
include /usr/local/openldap/etc/openldap/schema/dyngroup.schema
include /usr/local/openldap/etc/openldap/schema/inetorgperson.schema
include /usr/local/openldap/etc/openldap/schema/java.schema
include /usr/local/openldap/etc/openldap/schema/misc.schema
include /usr/local/openldap/etc/openldap/schema/openldap.schema
include /usr/local/openldap/etc/openldap/schema/ppolicy.schema
database bdb
suffix "dc=netat,dc=com"
rootdn "cn=root,dc=netat,dc=com"
rootpw {CRYPT}ba9K/ETp.ox9E
pureftpd.schema中的錯誤已修改
attributetype ( 1.3.6.1.4.1.6981.11.3.7 NAME 'FTPStatus'
DESC 'Account status: enabled or disabled'
EQUALITY booleanMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 SINGLE-VALUE )
另外想問問,rootdn的結構怎麼設置比較合理一點,因為以後可能也把郵件的加進去!
《解決方案》
回復 #1 pet-dtg 的帖子
都是看的人多,回的人少!
《解決方案》
幫您頂上去:mrgreen:
《解決方案》
建議換一個舊版本的pureftpd試試看:mrgreen:
我在centos下用1.0.21的出了類似的問題,換1.0.18就OK,據說是log_ldap.c的問題,不詳!
