<yambe:breadcrumb>389-DS|389-DS</yambe:breadcrumb>

Setup basic 389-DS server

To setup basic 389-DS server use following steps:

1. yum -y install epel-release
2. Setup remi repository using:

   wget http://rpms.famillecollet.com/enterprise/remi-release-6.rpm
   yum localinstall remi-release-6.rpm -y

3. Edit '/etc/yum.repos.d/remi.repo' and set 'enabled=1'
4. If LDAP server is being setup on VM or base machine then do the following: (Not useful for container based setup)
   1. Edit '/etc/sysctl.conf'

      net.ipv4.tcp_keepalive_time = 300
      net.ipv4.ip_local_port_range = 1024 65000

   2. In '/etc/security/limits.conf' add:

      *               soft     nofile          8192
      *               hard     nofile          8192

   3. Edit '/etc/profile' and at the end append

      ulimit -n 8192

   4. Edit '/etc/pam.d/login' and after last session required line add

      session    required     pam_limits.so

5. Create ldapadmin user and set its password
6. Install 389-ds and openldap-clients using:

   yum install -y 389-ds openldap-clients

7. Ensure that FQDN resolves to IP and with help of /etc/hosts IP resolves to FQDN. Without this setup fails. Even after setup while running the server this is necessary for server to continue working.
8. Run 'setup-ds-admin.pl' and enter appropriate values to setup the server
9. Allow incoming TCP connections on port 389, 636 and 9830 in firewall
10. Configure 389-ds to automatically start on system boot using:

    chkconfig dirsrv-admin on
    chkconfig dirsrv on

To connect to server on administrators machine

1. Install 389-ds (and not just 389-console)
2. Use command:

   389-console -a http://<server-fqdn-or-ip>:9830/

Steps learned from http://www.unixmen.com/setup-directory-serverldap-in-centos-6-4-rhel-6-4/ and https://www.youtube.com/watch?v=2wD-u5TMsfc

<yambe:breadcrumb>389-DS|389-DS</yambe:breadcrumb>