From 76a84c24fed540a10963834554fd931fbfbbc5dd Mon Sep 17 00:00:00 2001 From: UNiXMIT <4117073+UNiXMIT@users.noreply.github.com> Date: Mon, 25 Mar 2024 20:36:32 +0000 Subject: [PATCH 1/3] Update openldap --- openldap.md | 16 +++++++++++++++- 1 file changed, 15 insertions(+), 1 deletion(-) diff --git a/openldap.md b/openldap.md index 696c686..7135918 100644 --- a/openldap.md +++ b/openldap.md @@ -3,7 +3,21 @@ ### Pull and Run container ``` podman pull bitnami/openldap -podman run -dit --name openldap -e LDAP_ROOT=dc=secldap,dc=com -e LDAP_ADMIN_USERNAME=admin -e LDAP_ADMIN_PASSWORD=strongPassword -e LDAP_USERS=support -e LDAP_PASSWORDS=strongPassword -e LDAP_PORT_NUMBER=1389 -p 1389:1389 bitnami/openldap:latest +podman run -dit --name openldap \ +-v /home/support/openldap:/bitnami/openldap \ +-e LDAP_ROOT=dc=secldap,dc=com \ +-e LDAP_ADMIN_USERNAME=admin \ +-e LDAP_ADMIN_PASSWORD=strongPassword \ +-e LDAP_USERS=support \ +-e LDAP_PASSWORDS=strongPassword \ +-e LDAP_PORT_NUMBER=1389 \ +-p 1389:1389 \ +--health-interval=30s \ +--health-timeout=3s \ +--health-start-period=30s \ +--health-retries=3 \ +--health-cmd 'cat /opt/bitnami/openldap/var/run/slapd.pid || exit 1' \ +bitnami/openldap:latest ``` ### Attach to container From 8f01dfb264b3f7aad5efbad01e5a58f0140a564b Mon Sep 17 00:00:00 2001 From: UNiXMIT <4117073+UNiXMIT@users.noreply.github.com> Date: Mon, 25 Mar 2024 20:43:44 +0000 Subject: [PATCH 2/3] Update openldap --- openldap.md | 24 ++++++++++++++++++++++++ 1 file changed, 24 insertions(+) diff --git a/openldap.md b/openldap.md index 7135918..5fbe80b 100644 --- a/openldap.md +++ b/openldap.md @@ -32,6 +32,30 @@ cn=admin,dc=secldap,dc=com cn=support,dc=secldap,dc=com ``` +### Add Users +``` +sudo podman exec -it openldap ldapadd -x -H ldap://localhost:1389 -D "cn=admin,dc=secldap,dc=com" -f /bitnami/openldap/users.ldif -W +``` +users.ldif example +``` +dn: uid=support,ou=users,dc=secldap,dc=com +objectClass: posixAccount +objectClass: shadowAccount +objectClass: inetOrgPerson +cn: First Name +sn: Last Name +uid: support +uidNumber: 5000 +gidNumber: 5000 +homeDirectory: /home/support +mail: support@example.com +``` + +### Change User Password +``` +sudo podman exec -it openldap ldappasswd -H ldap://localhost:1389 -D "cn=admin,dc=secldap,dc=com" -W -x "uid=support,ou=users,dc=secldap,dc=com" +``` + ### Remove your container ``` podman stop openldap From a56c8b6d189ab8ecb58965eb76578c7c1f57e55b Mon Sep 17 00:00:00 2001 From: UNiXMIT <4117073+UNiXMIT@users.noreply.github.com> Date: Mon, 25 Mar 2024 20:44:27 +0000 Subject: [PATCH 3/3] Update OpenLDAP --- openldap.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/openldap.md b/openldap.md index 5fbe80b..fc2f040 100644 --- a/openldap.md +++ b/openldap.md @@ -45,8 +45,8 @@ objectClass: inetOrgPerson cn: First Name sn: Last Name uid: support -uidNumber: 5000 -gidNumber: 5000 +uidNumber: 1000 +gidNumber: 1000 homeDirectory: /home/support mail: support@example.com ```