!"$# %&#('
)+*(,.-0/214365879*:,.;6)(<>=@?(AB79;C;D?FEHGI?JK3MLBNO3QPA
RTSVUXWY[ZB\^]`_baY&ZBc dVUBe0Y&_ fgShZji$elkbSnm
opBqsrnt[uruXvjwQrvxu.yluz{vjq|rB}:th~qz€‚Bƒ„€th…F}:†‡qsz{ˆ:wQ†Iwlˆ:ƒ‰€srBŠ‹qrBwQqsrB†I†8€
ˆl†Œ€sz8q|ƒ‰€srB‚wlvj}Fz{u†‡wl€srŽ(u†Œu.wQru.ƒHqrB†‡zuyyl€ƒ„u†‡wl€rnzu†pIqz†‡purnt[uwQrI†8uwQr
ˆlqs…‘uHzu†‡q’‚wQyQqˆ+€rnquƒ“pnt[uƒ“pBwQrBq”•(pB}‘ˆl–„—™˜nšœ›j}:wQƒHžyQŸxzŒq…Fyluƒ“qŽVyluz{vq
‚ Qw Qy q +ˆ € nr ‡† Bp ’q ¡  Ir † sq 8z Br sq ‡† I– u r ¢Ž .u Br :} ht ~ q z € B‚ [t € Œz Vq jv sq Br q {z u y
r u ht q lˆ q Œz ‹Š Qw “ƒ q :ˆ œ£ sq 8z ¤q Ž sq ‹Š q ly € F… q VŽ Œ† V€ lˆ sq 8z ‹Š ’q [t s€ 8z |q ly € „ƒ Hu y Br sq q :Ž Kˆ ” ¥š F} r §¦ ˆ
/etc/hosts
F¨ :© ¬ª ™« 8­ ® lw :ˆ F… {z € (~ u ž~ Qy VŸ † Bp |q ž~ q lˆ I† ž r € n£ Br X– ž~ F} ‹† ±¯ ³° ² D´ Hµ X¶ 8· ¸ º¹ (Ž s€ q +ˆ »u lˆ Qw ¼t Qw ly u z
½ s€ ¾~ u r VŽ F… z € Œ† € „ƒ € :y lˆ F} Qw ‡† q +ˆ lˆ F} “ƒ p Xu Fˆ ¿ œ« ® u r Ž « ° À Á 8­ ±Â ® u ly Kˆ ’€ Qw Br Hƒ ¬y ‘} Ž q
r u ht q lˆ q Œz ‹Š Qw Hƒ q +ˆ € ‚ s€ Br Vq Kˆ s€ 8z Æ € z u r € ‡† Bp q z ”
:• Bp ’q [t s€ 8z ¤q jv q Br sq {z u y r u ht q lˆ q Œz ‹Š Qw “ƒ q +ˆ lˆ F} :… ‘… s€ 8z Æ .u Br :} ht ~ q z € ‚ ÅÄ [t u +… Kˆ Ŧ X– q u Hƒ p
s€ 2‚ n£ Bp Qw Hƒ np ‡† {z u r lˆ ly u † q :ˆ ‚ {z € Æt ž sq ǟ :ˆ 8† |€ >Š u Qy :} q ˆ ” ÉÈ n˜ ¡  œš lˆ q Œz ‹Š Qw r Ëv ±Ê Br Qw Ì
[t u Hƒ Bp Qw Br q :ˆ p Xu :ˆ [t u ‘… +ˆ lˆ :} Hƒ p Xu :ˆ ‘… Xu Kˆ lˆ Í£ Ž ‹– jv z € F} :… ‹– u F} 8† s€ [t € F} Br ‡† I– lˆ sq 8z ‹Š Qw Hƒ q lˆ –
u r ¤Ž 8z F… „ƒ ” ¤Î ‚ ‡† q nr ‡† Bp sq 8z Vq u Œz ’q ‡† £ V€ € Ãz [t € Œz ’q ž sq xŸ ‚ Qw q ly :Ž :ˆ Qw r Ïu [t u ‘… Ð ‡† Bp q
‘… Xu Kˆ lˆ £ ¤Ž &t u х 8‚ € Ãz q BÌ u ht F… Qy ’q p Xu :ˆ Œ† V€ ҈ q 8z žŠ Qw “ƒ |q ly € €  :} ‘… :ˆ Ç~ s€ ‡† np ž~ xŸ ‘} lˆ q Œz r u ht q
u r ¤Ž ž~ xŸ F} lw :Ž H” œ— u Œ† .u lw +ˆ u “ƒ Hƒ q Kˆ lˆ q VŽ n£ Qw ‡† np ‡† Bp Vq Kˆ u ht ’q Qy Qw ~ {z u Œz xŸ ‰ƒ u Qy ly :ˆ ‡† p u † s€ 8z lw v Qw Ó
r u Qy Qy xŸ p u r Ž Qy q ¤Ž ly € „ƒ u y ‚ Qw Qy q lˆ ‹– Kˆ ’€ [t € lˆ † u F… F… Qy Qw ‰ƒ u ‡† lw € nr F… z € jv z u [t +ˆ Hu Œz ’q r s€ †
u £ u Œz ’q ‡† p u I† † Ip ’q :} Ãr Ž sq 8z Qy žŸ Qw Ãr xv lˆ Œ† € {z Xu v ’q p Xu :ˆ Hƒ p u r jv q :Ž ”
ÉÈ Br q ‡† £ € Œz x +} lˆ Qw r xv .u n˜ ¡  ™š Œz q Qy Qw q +ˆ € nr Qw I† „ƒ € ht F… ¬y sq ‡† q Qy xŸ 8‚ € Ãz r € 8z [t u y
s€ F… q {z u ‡† lw € r Kˆ |€ [t Hu Qw Br Œ† u Qw Br Qw r Ëv Qw Œ† :ˆ Qw Br ‡† q jv Œz Qw † VŸ 0w :ˆ ‹Š Qw Œ† u ly ” TÔ € lˆ B† n˜   œš lˆ ǟ lˆ ‡† q [t :ˆ Qw r
‘} lˆ ’q Œ† € (Ž u xŸ p u žŠ ’q ‹Š sq 8z xŸ Qy Qw ‡† ‡† Qy ’q F… z € ‡† q Hƒ ‡† lw € r Xu v u Qw r lˆ Æ Hu Hƒ ‡† Qw ‹Š ¤q Hu ‡† Œ† u Hƒ ž q z Kˆ Ð ‡† Bp q Ÿ
Ž q F… sq r Վ € nr ‡† Bp ’q   ×Ö Xu :Ž Ž Œz q Kˆ +ˆ € B‚ ‡† Bp Vq lˆ sq 8z ‹Š sq z ~ q Qw r Ëv n£ lw Ž q Qy xŸ ž r s€ œ£ r u r Ž
Xu Kˆ lˆ F} ht ’q ‡† p u I† r € (~ € Ž VŸ p Xu (ˆ Œ† u ž sq r € ‹Š sq z Qw Œ† +ˆ Xu (Ž Ž 8z q Kˆ Kˆ H” :• Bp lw :ˆ lw +ˆ € ~ ‹Š lw € ‘} lˆ Qy Ÿ
Qw r lˆ sq Hƒ :} Œz ’q Qw r .u £ € Œz 0y ¤Ž n£ Bp q Œz ’q :• Ø ÑÖ ‰ƒ s€ Br Br q Hƒ ‡† lw € r :ˆ „ƒ u nr ž~ |q Bp w ½ Hu Hƒ ž q Վ u Æ u
Ž lw lˆ Œ† u Br “ƒ sq ‹– Kˆ V€ lˆ ǟ lˆ ‡† q  t Ž q lˆ lw jv Ir q {z +ˆ u Œz ’q ‡† :} Œz Br Qw r Ëv Œ† ’€ Hƒ 8z Ÿ :… Œ† € jv {z u F… Bp xŸ Œ† €
F… z € ‹Š lw Ž Vq Xu Kˆ lˆ F} {z u Br Hƒ ’q ‡† p u Æ žv € € Վ :Ž u 8† .u lw :ˆ ~ q Qw r Ëv ‘} lˆ q :Ž ”
TR VS XU  W [Y BZ \ ÛÙ nÚ BU ¢Ü hS n_ 2U le bk Vd 2U 0e [Y _ gf ¾S jZ $i 0e bk S
™È :} ‡† Bp sq Br † Qw „ƒ u ‡† Qw r Ëv +} lˆ sq {z :ˆ lw +ˆ € Br ¤q € B‚ † Ip ’q [t € Œz ’q ‹Š lw lˆ Qw ž~ Qy ¤q Xu lˆ :… sq “ƒ Œ† +ˆ € ‚
„ƒ € ht F… F} † sq z lˆ sq “ƒ F} 8z Qw ‡† ǟ ” :Ö q € F… Qy Vq u Œz ’q +} lˆ q VŽ Œ† ’€ F… z € ‹Š lw Ž Qw r Ëv +} lˆ sq 8z r u ht q +ˆ u r Ž
‘… Xu Kˆ lˆ £ € z :Ž :ˆ œ£ Bp sq nr ‡† Bp q xŸ £ u Br I† Œ† ’€ ‘} lˆ Vq .u [t u “ƒ Ip Qw Br Vq € z € ‡† Bp sq z Œz q Kˆ € F} Œz “ƒ q ”
±Î Br Vq u F… F… z € u Hƒ np 8† ¤€ u :} ‡† Bp sq Br † Qw „ƒ u ‡† lw € nr Qw r .u Br sq ‡† Í£ s€ 8z V lw +ˆ lˆ Qw ht :… Qy VŸ 8† |€ +} lˆ |q † Ip q
b˜ ¡  ™š Œ† V€ u Hƒ “ƒ q Kˆ :ˆ ‰ƒ s€ Br ‹Š q Ir † lw s€ r u y ±Ê Br Qw ÝÌ ‘… Xu Kˆ lˆ £ € z VŽ Ãp „u lˆ Ip q +ˆ u r ¤Ž 8† ¤€ (Ž |€ † Ip q
>Š u Qy lw :Ž u ‡† lw € nr ly € „ƒ u Qy Qy ¾Ÿ € nr ‡† Bp Vq Ž q lˆ  8† s€ ¢… [t u Hƒ Bp Qw Br q ” :• Bp lw +ˆ lˆ “ƒ Bp sq ht ’q lw ˆ
ƒ„€tht[€srByQŸx}+ˆlqŽV£nwQ†‡p ¨:©:ª¬«™­8® ~ž}F†IwQ†ˆl}F‚‚qzˆ(‚z€tÆpuŠ‹wQrvˆŒ€’t[užq
uyQy…‘uXˆKˆl£€zŽVpuXˆlpBqˆ+uŠ>uwQylu~žyQq|†8€¤uyQy:Žqˆlž†Œ€…Ñt[uƒ“pBwQrBqˆK”•(pBqsz8qVuzŒq
ˆlpÃu„Ž:€£nӍ…‘uXˆKˆl£€zŽÕˆÒƒ“pBqsthqˆ:†‡pu†I…Fz8qsŠ‹qrB†Ãħ€z{ŽwQruzŒŸÇ¦{}‘ˆlqzˆ:‚z{€st
vq†‡†‡wQrvËp€ylŽ¢€‚B†‡pBq’puXˆlpŽ:u†ŒuH–X~}:†I†‡pBqˆlq¤uz8q|‚ÞuwQzŒyQŸxquXˆlŸV†8€|~žŸž…‘uXˆKˆ
£npBqsrn}+ˆlqŽV£nwQ†‡puϘb ¡š2”owQ†puƒHƒ“qˆKˆ:†Œ€Vu.ƒ‰€syQyQqƒH†wl€sr€‚B…‘u„ˆ`ˆl£Í€sz{Ž
puXˆlpIqˆl–‹u.ƒHz{uƒHžqzÄurnt[€}FrB†ÃuߎwQƒH†‡wl€ruzŒŸ¾u†‡†8uƒHx£nwQ†‡pu»vž€€Ž
ƒHpurBƒHqV€‚ˆl}Fƒ“ƒHqˆKˆ+ˆK€’wQ†I£Í€s}:ylŽ¤~žq|~žqs†‡†qsz†Œ€’žqsq…ц‡pBq’puXˆlpBqˆ+u£ÍuŸ
‚z€tƃHyQwQqrB†It[uHƒHpBwQrBqˆ(qsrB†‡wQz8qyQŸ(”
șr€†‡pBqszu…F…Fz{€uƒ“pnwlˆ:†Œ€|}+ˆlq¤u߈l…Fqsƒ“wluyQӍ…F}Fz8…‘€ˆlq¤u}:†‡pBqsrB†‡wQƒ‰u†‡wl€r
…Fz€†Œ€ƒ„€y:ˆl}:ƒHpuXˆ:à+ș—™ ¡Ê™šœ€z•:ȱ؁șØš2áF”H•:pBqˆlq’£nqsz8qV€sz8wlvjwQruyQyQŸ
ŽqŠžqyl€…FqŽV†Œ€’ƒ„€rB†‡z€y:uƒHƒ“qˆKˆ:†Œ€’t[€ŽqtÆ~(urBÇˆl–X~ž}F†Ãuz8q|q›j}+uyQyQŸ
}‘ˆKu~žyQq|£nwQ†pŽqˆl†8€s…у‰€sth…:}F†‡qzˆK”â’qsz8~qz€ˆ:wlˆ+ur€s†pBqsz£uŸx†Œ€VŽ:€
u}F†‡pBqrB†‡wQƒ„u†wl€srn£nwQ†pÀ}F†Bqs̉…+€ˆlwQrvxˆlqsƒ“zŒq†ŒˆKІ‡pBwlˆ+uylˆK€’puXˆ:†‡pBq’~qrBqs‚wQ†
€s‚2…Fz€Š‹wlŽwQrvxu.ƒ„€th…FyQq†‡qVˆlwQrvjyQqÓ8ˆlwlvjrBÓ8€rnqsrBŠ‹wQz{€rBthqsrB†BwQ‚BwQ†Bwlˆ:‚}Fy¬yQŸ
wQth…FyQqsthqrB†‡qŽ:”šãqŠ‹qsz{uy:€†‡pBqsz…Fz€†Œ€ƒ„€ylˆ:puŠ‹q|~žqsqrn…Fz8qˆKˆlqŽ¤wQrB†Œ€
ˆlqsz8Š‹wQƒHq’‚8€szu}F†pIqrB†‡wQƒ‰u†‡wl€sr€Š‹qzƇpBq’Ÿžquz{ˆKКãÔ[ä×uyQyl€£ˆ+u}:†‡pBqsrB†‡wQƒ‰uÓ
†‡wl€sru„vuwQrˆl†urn˜b•$Ž(€st[uwQrB–‹urŽV BpuŠ‹q’qsŠ‹qrnpBquz{Ž¢€‚BÖ:α֢~qwQrv
}‘ˆlqŽ¤wQrn†pIw0ˆ:£uŸÇ吠¡†Iƒ‰€sthqˆ+uXˆ:r€Vˆl}Fz8…Fz8wlˆlq|†8€|‚wQrŽV†‡pu†Iæ(—™È™Ö¢wlˆ:r€£
}‘ˆlqŽ¢uru}:†‡pBqsrB†‡wQƒ‰u†‡wl€rn…Fz€†Œ€ƒ„€y:uXˆ:£nqsyQyl”
 8ŽquyQyQŸž–‹uÏrIq†‡£€z8ÕuH}F†‡pBqrB†‡wQƒ„u†wl€srˆlqzŒŠ‹wQƒ“q¤ˆlp€}FylŽV…Fz{€sŠ‹wlŽq|z8qsyQwlu~žyQq
urˆl£nqsz{ˆl–X~žq|‚8uXˆl†–‹urŽ¢ˆlp€}FylŽV£€zŒx£nwQ†p€s}:†Iq̉…‘€ˆlwQrvxurBŸxwQrB‚8€zŒt&uÓ
†‡wl€sruH~(€}F†I†pBq|…‘u„ˆ`ˆl£Í€sz{Ž:”•(pBwlˆ:wlˆ:puz{ŽqzƇpurnwQ†B‚wQzˆl†Byl€€Çˆl–‹uXˆ:†‡pBq
ƒHyQwQqrI†Ž:€qˆ:r€†I£urB†I†8€|q̉…‘€ˆÒq’†‡pBq’…‘uXˆKˆl£€zŽV†Œ€|†pBq¤ˆlqzŒŠ‹qzÃwQrnƒ„u„ˆÒq
†‡pBqVˆÒqz8Šžqz†‡}Fz8rˆ+€}F†I†8€|~žq|ƒ‰€st¼…Fz€thwlˆlqŽ:”šãwQthwQyluHzŒyQŸž–X†‡pBqVˆlqzŒŠ‹qz
ˆlp€s}:ylŽ¤r€†Iqs̉…+€ˆlqVurBŸxpuXˆlpŽ:u†Œu.†8€|†‡pBq’ƒHyQwQqrB†Œ”˜nq†‡£€sz8¾ˆlr€€…Fqzˆ
ˆlpÀ}FylŽVr€s†I~žq¤u~žyQq|†8€¤vžu†‡pBqzurBŸ¾Ž:u†Œuφ‡pu†Iƒ„urn~žq|z8qs…FyluŸžqŽ¤ylu†‡qzƌ€
vuHwQrn}Fru}F†p€sz8wlˆlqŽÕuƒHƒ“qˆKˆK”ç.uƒHpn…Fz{€s†8€sƒ‰€sy†8uƒHžyQqˆ:†pBqˆlq’…Fz{€s~žyQqst[ˆ:wQr
ŽwQ‚‚qzŒqrB†I£ÍuŸÇˆl–X£nwQ†pnŠ>uzŒŸžwQrvxŽqvjz8qsqˆ+€‚ˆl}Fƒ“ƒHqˆKˆK”æ(—™È™Ö¢puXˆ+u
rB}Fth~qz€s‚u}:†‡pBqsrB†wQƒ„u†‡wl€rurŽ¢ˆlqƒH}:zŒwQ†‡Ÿ¾€…F†‡wl€rˆ:£npBwQƒHpnƒ„urn…:z€Š‹wlŽq
Š‹qsz8Ÿ¾vž€€Ž¢ˆlqƒH}:zŒw¬†‡ŸxwQ‚B}+ˆlqŽVƒ„€zŒz8qsƒ“†‡yQŸž–X†p€s}+vjpuXˆ:qsŠ‹qz†‡pBqzŒq’wlˆ+u
†‡zuXŽqsÓ8€‚‚B~žqs†‡£nqqrˆlqsƒH}:zŒwQ†ŸÕuHrÎVqu„ˆÒqV€‚Bt[uruXvjqsthqrB†Œ”
èé"Ùëê ìTdnmhe0kbm
æ:—™È™Ö+íîXï‰wlˆ+uߎwQz8qsƒH†8€sz8ŸžÓ8uƒHƒHqˆKˆ:…Fz{€s†8€sƒ‰€sy:Žqsz8wQŠ‹qŽV‚z€tÆ𒔠ñ‹ò„òX” †
£€sz8Çˆ:£nwQ†‡pu.†‡z8qsqVˆl†‡z8}Fƒ“†‡}Fz8q|£npBqzŒq’quƒHpnr€ŽqV€sz€s~ ½ qƒH†IwQrn†‡pBq’†‡z8qsq
ƒ„€rI†8uwQrˆ+u»ˆlqs†Ã€‚u†‡†‡z8wQ~}:†‡qsӍŠ>uyQ}:q¤Ž(u†ŒuX”ç.uƒHp€s~ ½ qƒH†I~žqsyl€rvˆ:†8€¤€rBq¤€z
t[€sz8q¤€~ ½ qƒH†ƒHyluXˆKˆlqˆl–X£œpBwQƒHpŽq‚wQrBq|†‡pBq’t[urŽ:u†8€sz8Ÿ¾urŽ¢€…F†‡wl€sruy
u†‡†‡z8wó~ž}F†qˆK”•(pBq¤€zŒwlvjwQruy:u…F…FyQwQƒ‰u†‡wl€r¼€‚B~ǀs†‡pn𒔠ñ‹ò„ò»urŽ¤æ:—™È±ÖÑ£ÍuXˆ:†Œ€
…Fz€Š‹wlŽqVu»ÄÅ£œpBwQ†‡q|…+uXvqˆK¦ãŽwQzŒqƒH†Œ€z8ŸÕˆlqzŒŠ‹wQƒ“qs–X£œpIqzŒq’t[€ˆl†Ã€~ ½ qƒH†Œˆ:wQr
†‡pBq|†zŒqq|z8qs…Fz8qˆlqrB†‡qŽ¤…Fq€s…FyQqVurŽ¤†pBq|†‡z8qsq’puXŽ¢ußvq€vz{u…FpBwQƒß€z
€sz{vžurBwlˆ`uH†‡wl€sruy:ˆl†zŒ}:ƒH†‡}:zŒq”
f4UY[Z2eÞ_Õô Rõ] f éödVU¥d e8_ dh_ èé"Ùëê é÷eÞZ¥Sœk¤U¥Y&ZXø
à‘ùžØúXû‹òXüXíMú‹ïBŽqˆlƒ“zŒwQ~žqˆ+u»ˆlƒ“pBqst[u.‚8€zˆÒ†8€sz8wQrv˘b ¡šœŽ:uH†Œu.wQrurnæ:—™È±Ö
ŽwQz8qsƒH†8€sz8ŸÇ”Ôöu…:…FwQrvˆ+uHzŒq’…Fz€Š‹wlŽqŽ¤‚8€zuHyQy†‡pBq|ƒ‰€stht[€rŽ:u†8u~(uXˆlqˆKÐ
…‘uXˆKˆl£Ž–‹vjz€}F…F–„p€ˆl†Œˆl–IˆlpÃu„Ž:€£n–‹ˆlqzŒŠ‹wQƒHqˆl–XrBq†Œvjz€}F…F–„…Fz€†Œ€ƒ„€yQ–Xq†‡pBqsz{ˆ
qs†‡ƒ‰”•(pIq’à‘ùžØɎqˆlƒ“zŒwQ~qˆ+€~ ½ qƒH†‡ƒ“yluXˆKˆlqˆ+urŽÕu†‡†‡z8wQ~}F†qˆl–X~ž}F†ÃŽ(€sqˆ:r€s†
t[urŽ:u†‡qVu.…‘uz8†‡wQƒH}:yluzƇz8qq¤ˆl†‡z8}Fƒ“†‡}Fz8q”Èýƒ„€tht[€srn…:zuƒH†wQƒHq’wlˆ:†Œ€|}+ˆlq¤u
ˆl†‡zŒ}:ƒH†}Fz8q’yQwQžq|†pBwlˆKÐ
dc=org
dc=example

ou=People ou=Group ou=rpc ou=mounts

þ sq z8qs–‹Ž(€st[uwQrBӍƒ‰€sth…‘€rBqsrB†BruthwQrv’wlˆ:}+ˆlqŽV†Œ€’t[u†‡ƒHpn†‡pBqVŽ:€t[uwQr
rÃuthq|°Œÿ
D°  µ
burŽÕˆlqs…‘uHzu†‡qVˆl}F~ž†‡zŒqqˆ+uHzŒq’…Fz€Š‹wlŽqŽ¤‚8€zÃquƒHpn†‡Ÿž…Fq
€s‚BwQrB‚8€z8t[u†‡wl€r”—œu†Œu.‚z{€st †‡pBq|…+uXˆKˆl£Ž¤‚¡wQyQq¤vž€qˆ:wQrB†8€¤€}Ö:q€…FyQq
zu†‡pBqzƍpÃur€} …‘uXˆKˆl£ŽV~qƒ„u}+ˆlq|wQ†Bw҈+u„ˆKˆÒ}:thqŽV†‡pu†IquƒHpn…FqzˆK€rnpuXˆ
€srBq’…FzŒwQt[uz8Ÿ¾uƒHƒ„€}FrB†urŽ¤†‡pu†Ã€†‡pBqzÃwQrB‚8€zŒt[u†‡wl€rn£nwQyQy~qVuXŽ:ŽqŽV†Œ€
†‡pBq¤ˆKuHthq|qrB†‡zŒŸ M…:p€srBq’rB}Fth~žqsz8–XqӍt[uwQy:uXŽ:ŽzŒqˆKˆ:q†‡ƒ ”

•:Ÿž…FwQƒ‰uy:Ž:u†8u.wQruruƒHƒ‰€s}:rB†IqrB†‡zŒŸxyl€€sÇˆ:yQwQžq’†‡pBwlˆKÐ
dn: uid=andrew,ou=People,dc=example,dc=org
uid: andrew
cn: Andrew Findlay
objectClass: account
objectClass: posixAccount
objectClass: top
objectClass: shadowAccount
shadowLastChange: 11296
shadowMax: 99999
shadowWarning: 7
loginShell: /bin/bash
uidNumber: 500
gidNumber: 500
homeDirectory: /home/andrew
gecos: Andrew Findlay

•:pBq’‚wQz{ˆl†IyQwQrBqVˆlqs†8ˆ:†‡pBq’—™wlˆl†‡wQrvj}Fw0ˆlpBqŽV˜uthq|Ó2†‡pBq’}FrBwl›j}:q’ruthq
userPassword: {crypt}$1$uQSw.ohy$XuiRSCq0kp...

wlŽqrB†‡wQ‚ŸžwQrvˆ‡pBwlˆ:qrB†‡z8ŸxwQrn†‡pBq’†‡zŒqq!” ž´Å¶ßwlˆ:}+ˆlqŽÕuXˆ:†‡pBq’ruthwQrv
u†‡†‡z8wQ~}:†‡qÐH†‡pBwlˆ:zŒq‚qsz{ˆ:†Œ€’†‡pBq’ÊœˆlqzࡗɆ‡pu†I£œq|£€}:ylŽ¤r€zŒt[uyQyQŸxƒ‰uyQy
ÄÅ}+ˆÒqz8rÃuHthq¦{wQru.ʙrBwQÌ݃‰€srB†‡q̉†Œ”•(pBqsz8q|wlˆ+€rBqVuXˆl…Fqsƒ“†Ã€‚ ´D¶ß†Œ€’~q
…‘uzŒ†wQƒH}:yluzŒyQŸ¾u£uHzŒqV€s‚8ÐHwQ†Iwlˆ:t[u†‡ƒ“pBqŽVwQru.ƒ‰uXˆlqsӍwQrˆlqrˆlwQ†‡wQŠ‹q’£uŸ¾ˆK€|w¬†
wlˆ:r€s†I…+€ˆKˆlwQ~žyóq’†Œ€’zŒq…Fz8qˆlqrB†ÃŽwlˆl†‡wQrBƒ“†ÃuƒHƒ‰€s}:rB†Œˆ+Äłz8qŽ(¦ãurŽÕÄÅùžà‘ç:—œ¦ó”
˜¼€†‡wQƒHq’†‡pu†I†‡pB"q ´D¶bu†‡†‡z8wQ~}:†‡q¤€ƒHƒ“}Fz{ˆ+uXvžuwQrnwQrˆlwlŽq’†‡pBq’qsrB†‡z8Ÿž–‹uyl€rv
£nwQ†‡#p ž´Å¶ « $&%8 °
ur"Ž ‹´Å¶ « '(%8)°
ŒÐH†‡pBqsz8q|th}+ˆl†I~žq|qÌBuƒH†‡yQŸ¾€rBqV€s‚BquƒHp
€s‚B†pBqˆlqVu†‡†‡z8wQ~}:†‡qˆ+urŽ¤†‡pBqŸ¾uzŒq’}+ˆlqŽV£npBqsrnz8qˆK€yQŠ‹wQrv˃„uyQylˆ:†8€
X°*À +-,!(.*/2q†‡ƒ„”
 •:pBq’‚}FyQyruHthq¤€‚B†‡pBqVuƒHƒ‰€s}:rB†Ã€s£œrBqszu…F…Fquzˆ:†£nwQƒHqЂwQzˆl†uXˆ01,
Mؙ€stht[€rn˜uth2 q ‰£œpIwQƒ“pnwlˆ+uru†‡†‡z8wQ~}F†q|†‡pu†Bƒ„urn†Œužq’th}FyQ†‡wQ…FyQq
Š>uyQ}Fqˆ+urŽ¤w0ˆ:th}Fƒ“pn}‘ˆlqŽ¤~žŸx£npBwQ†‡qӍ…‘uXvjqˆ(yl€€ž}F…‘ˆK”H•:pBq’q̉†‡zuσ„€…FŸ
wQrn†‡pBq X ° 0¡µH²u†‡†zŒwQ~ž}F†‡qVuyQyl€s£Íˆ:ƒ„€rI†z€y:€sŠ‹qzƍpIq’qÌBuƒH†Ãˆl†‡z8wQrvËzŒq†‡}Fz8rBqŽ
†Œ-€ X°*À +,!&.*/2ƒ„uHyQylˆK”
•:pBq|µ %43¡)° 0Þ4À 56H²Œ²u†‡†‡zŒwQ~ž}F†‡qˆ:zŒq‚qsz†Œ€VuXˆl…Fqsƒ“†Œˆ+€s‚B†pIq’à‘ùžØúXû‹òXü»ˆlƒ“pIqt[uX”
•:pBqŸ¾ˆlqs†I†‡pBq’yQwlˆl†Ã€‚Bt[urŽ:u†Œ€z8ŸÕurŽÕ€s…:†‡wl€sruy:u††‡zŒwQ~ž}F†‡qˆ:‚8€sz†‡pBq
qsrB†‡z8Ÿž–‹urŽÕuz8q¤uylˆK€’}+ˆlqs‚}:ywQrˆlquz8ƒHpBqˆK”Èýƒ„uyQy:€‚B†‡pBq’‚8€zŒt
X°“*À +,!(.879,j ¶
)° +"7:/2wlˆ:yQwQžqyQŸx†Œ€’zŒqˆl}:yQ†IwQrurœæ:—™È±Ö ˆlquz8ƒHp€‚B†‡pBq
‚8€sz8t (uid=andrew) AND (objectClass=posixAccount)
;=<?>A@BC?
Ȝˆ:£nq’puŠ‹qVˆlqsqrB–‹Ž:u†8u.‚z€tƅ‘u„ˆKˆl£Ž¢urŽÕˆlpuXŽ:€£ ‚wQyQqˆ:t[u…‘ˆ:yQwQrBqÓ
~ŸžÓyQwQrBq’wQrB†Œ€’†‡pBq¤uHƒHƒ„€}FrB†BqsrB†‡z8ŸÇ”—œu†Œu.‚z{€tƆ‡pBqVvz{€}F…Ñ‚wQyQq’wlˆ:purŽyQqŽ
wQru»ˆlwQthwQyluz£uŸÇ”Èýƒ„€rBŠ‹qrB†‡wl€rÃuHyʙrBwQÌnvjz{€s}:…Ñ‚wQy¬q|puXˆ+€rBqVvjz€}F…
…FqszyQwQrBq–X£nwQ†pnqsŠ‹qzŒŸ¾vjz{€s}:…Ñthqth~qzyQwlˆl†‡qŽ:Ð
•:pBwlˆ:w0ˆ:ƒ„€rBŠ‹qsrBwQqrB†I‚8€zˆlqsqwQrvË£np€’wlˆ:wQru»vjz{€s}:…F–X~ž}F†Bqs̉†zŒqthqsyQŸ
ldapbods:x:389:tim,steve,colin,damy,andrew

wQrBqs‚‚wQƒ“wQqsrB†I‚8€z†‡pBq|t[€ˆl†Iƒ‰€stht[€r€…Fqsz{u†‡wl€rÐyQwlˆl†‡wQrvˆ‡pBqVvz{€}F…‘ˆ:†‡pu†
u.…‘uz8†‡wQƒH}:yluz}‘ˆlqzÃwlˆ+uÏthqsth~žqsz€‚u†Iyl€vjwQrn†‡wQthq”•(pIq’}+ˆl}‘uy:uylvž€zŒwQ†pBt
wlˆ:†Œ€’qsrB}:thqsz{u†‡q’qŠžqz8ŸVqrB†‡z8ŸxwQrn†‡pBqVvz{€}F…Ñt[uH…Ñyl€€sžwQrv˂8€z€ƒHƒ“}Fz8Ó
zŒqrBƒHqˆ+€s‚2†‡pBq|}+ˆlqsz8ruthq”
à‘ùžØúXû‹òXü»Žqs‚wQrBqˆ+vjz€}F…¢thqsth~žqsz{ˆlpBwQ…Ñ}‘ˆlwQrvˆ‡pB"q )° &%Œ)°
)D´Å¶
u†‡†‡zŒwQ~ž}F†‡q’wQrEu XµH²´Åÿ F
µ !b€~ ½ qƒH†Œ”Hä:qsƒ‰u}‘ˆl"q )° &%Œ)°
)D´Å¶Ýwlˆ+u.t¼}FyQ†‡w¬Ó
Š>uyQ}FqŽ¢u†‡†‡z8wQ~}:†‡qs–„†‡pBq¤vjz{€s}:…Ñt[u…у„uHrnrÀ£ ~žq¤ˆlquzŒƒ“pBqŽVŠžqzŒŸ
qs‚‚wQƒ“wQqrB†‡yQŸÇ”•(pBq|qÌButh…Fy¬q¤vjz{€s}:…ÑqrB†‡z8Ÿ¾u~(€Š‹q|£Í€s}:ylŽ¤yl€€xyQwQžq|†pBwlˆ:wQr
†‡pBq¤ŽwQzŒqƒH†Œ€z8Ÿ(Ð
dn: cn=ldapbods,ou=Group,dc=example,dc=org
objectClass: posixGroup
objectClass: top
cn: ldapbods
userPassword: {crypt}x
gidNumber: 389
memberUid: tim
memberUid: steve
memberUid: colin
memberUid: damy

¼˜ € n£ „– Œ† ’€ ‚ Qw r ¤Ž ‡† Bp ’q Qy lw lˆ Æ € ‚ jv {z s€ :} ‘… :ˆ ‡† p u † .u ‘} lˆ q z ~ q ly s€ r žv :ˆ 8† s€ X– † Bp ¤q lˆ q u Œz “ƒ np lw ˆ
memberUid: andrew

s€ B‚ † Bp |q 8‚ € 8z [t Ð
•:pBq’æ:—™È±Ö ˆlqz8Šžqzƒ„urn~žq|ƒ‰€srB‚wlvj}:zŒqŽ¤£nwQ†pnwQrŽq̉qˆ+€rurBŸ¾u†‡†‡z8wQ~}:†‡q–
(objectClass=posixGroup) AND (memberUid=andrew)

ˆK€¤ˆlquz8ƒHpBqˆ.€s‚B†pBwlˆ:‚8€sz8tƃ„uHrn~q’t[uXŽq’Š‹qzŒŸxq‚‚wQƒHwQqrB†ÃurŽVyluzvjq
Ž:u†Œu~ÇuXˆlqˆ:ƒ‰urb~žq|purŽyQqŽV£nwQ†‡p€s}:†I…FqzŒ‚8€zŒt[urBƒHq’…FqruyQ†‡wQqˆK”
 ê ڜUjU2eÞ_¢ô e‡U4d#G?G’UYÍôÍSVUIÜÕShZ
š2€|t¼}FƒHpn‚8€z†‡pBq’†‡pBq€zŒŸž–X~ž}F†Bp€s£ th}FƒHp̀s‚B†pIw0ˆ+uƒH†‡}+uyQyQŸx£€zŒÇˆHǕ.€
‚wQrŽ¢€}F†‡–X 2~ž}FwQyQ†Ãu.†qˆl†‡~žqŽÕ€sruυ‘€sz8†Œu~žyQq|Ö:Ø&z8}FrBrBwQrvËà‘qŽ þ u†ÃüX”JI
urŽ¢ˆl}:…F…‘€zŒ†‡wQrvxˆlqŠ‹qsz{u2y K|Ô4£uz8q’ŠžwQz8†‡}+uyt[uƒHpBwQrBqˆ:£nwQ†‡pŽwQŠžqzˆlq
€s…Fqz{u†‡wQrvxˆlŸÇˆÒ†qst[ˆK” ºuylˆK€’ƒ„€rBrBqsƒ“†‡qŽ¢u.šã}:rnʙyQ†‡z{u.ñ»z8}FrBrBwQrv
š2€sy0uzŒwlˆ LI”
•:pBq’æ:—™È±Ö׈lqsz8Š‹qsz£uXˆF)² 6MX¶ß‚z€tÆΤ…FqsrBæ(—™È™Ö¢ú‹”9òXJ” INLOu»ˆlqsƒ“}Fz8wQ†‡Ÿ
uXŽŠ‹wlˆK€zŒŸxpuXˆ+ˆlwQrBƒ“q|~žqqsrnwlˆKˆl}:qŽVzŒq›j}:wQzŒwQrvË}:…‘vjzuXŽq|†8€|úI”9òX” ú I
”•(pBq
ƒ„€rB‚wlv˂wQyQq’wlˆ+ˆlp€£nrnwQrnȱ…F…FqrŽwQPÌ IX”„ˆlylu…‘ŽÕˆlqsrŽ(ˆ:yl€vžvwQrvxŽ(u†ŒuφŒ€
ˆlŸ(ˆly0€vj–‹urŽVwQ†Iwlˆ+ußv€€Ž¤wlŽquφŒ€Vˆlqs…‘uHzu†‡q’†‡pBwlˆ:wQrB†8€¤uςwQyQqV€s‚BwQ†8ˆ+€s£œr
£nwQ†‡puÏyQwQrBq’yQwQžq|†pBwlˆ:wQr /etc/syslog.conf:
 B‚wQrŽVwQ†Iƒ‰€srBŠ‹qrBwQqsrB†B†Œ€’qq… u.£nwlŽq|£œwQrŽ:€£@€rˆlƒHzŒqqrnzŒ}:rBrBwQrv
local4.* /var/log/slapd.log

¦ tail -f¦ã€rn†‡pBq’yl€vj‚wQyQq’£npBwQyQq’†‡qˆl†‡wQrvž”
•+€’ƒHz8qu†q|†pIq’wQrBwQ†‡wluy:Ž(u†Œu. 2}‘ˆlqŽ¤†‡pBq’thwlvjzu†wl€srn†Œ€€ylˆ:‚z€tÆÖ:ș—™æ
ˆK€s‚†£uzŒq”•(pBqˆlqVuz8qV€s‚†‡qrnwQrBƒ“yQ}‘ŽqŽV£nwQ†‡pnæ(wQrB}FÌnŽwlˆl†‡zŒwQ~ž}F†wl€srˆl–„~}F†BwQ†
wlˆ:£€sz8†‡pn‚q†‡ƒHpBwQrvˆ‡pBq’ylu†‡qˆl†IŠ‹qsz{ˆlwl€srœ‚z€tÆ£n£n£” …+uXŽyl” ƒ„€tƕ(pBq|†8€€ylˆ
rBqsqŽ¤Š‹qzŒŸxyQwQ††‡yQq’ƒ„€rB‚wlvj}Fz{u†‡wl€rI–IurŽ¤£œwQyQyyl€u„Ž¢Ž:uH†Œu.‚z{€stÆq̉wlˆl†‡wQrv
‚wQyQqˆ:wQr Qw Br Œ† ’€ ‡† Bp |q (æ ™— ™È ×Ö Ž Qw 8z sq “ƒ Œ† s€ 8z ǟ ” ¼˜ € ‡† ’q ‡† p u I† † Ip ’q Œ† € s€ ly :ˆ “ƒ Œz q u ‡† q
‡† Bp |q ‰ƒ s€ Br Œ†/etcu Qw Br q Ãz q Br ‡† Œz Qw q Fˆ µ 'Q © Œ° Mµ  D ð q ‡† σ ž~ F} I† ‡† Bp q ¾Ÿ :Ž ’€ r s€ I† “ƒ Œz q u ‡† |q † Ip ’q Œ† € F… Ó
Qy sq ‹Š q y q Br ‡† 8z Ÿ C ¶ 80 Q Œ°
ÿ  D S° 9R ¶ 10 Q µ T
ß Qw nr ‡† Bp lw :ˆ ‰ƒ Xu lˆ 2q B Kˆ ’€ Qw B† ht ‘} lˆ I† ž~ ’q Hƒ 8z q u ‡† q VŽ ~ Ÿ
p u r ¤Ž ž~ sq 8‚ € 8z |q ‡† Bp ’q Œ† € € ly :ˆ n£ Qw Qy y 8z F} r ” .• V€ :Ž ’€ ‡† Bp lw lˆ X– “ƒ Œz q u ‡† Vq .u ‚ Qw Qy Vq € B‚ ‡† Bp ’q 8‚ € Œz [t Ð
dn: dc=example,dc=org
objectClass: dcObject
objectClass: organization
o: The Example Organisation

urŽ¤yl€uXŽ¤wQ†B£nwQ†‡pu.ƒ‰€stht[urŽVyQwQžq|†‡pBwlˆKÐ
dc: example

ldapmodify -a -H ldap://localhost/ -r -c -x \
-D ’cn=Manager,dc=example,dc=org’ -W \

™È I† † Ip 0w +ˆ lˆ Œ† Xu jv sq X– † Ip ’q (æ ݗ ±È ×Ö lˆ sq 8z žŠ q z „ƒ u nr ~ ’q ‡† q lˆ ‡† q ¤Ž n£ Qw ‡† œp „ƒ s€ ¼t [t u r Ž Ó Qy Qw Br q
-f <filename>

Œ† € s€ ly +ˆ lˆ :} Hƒ p Xu Eˆ Å
¶ MXŒ² S° 
UW0 IV ” ¤Î Br Hƒ ’q Qw I† lw (ˆ £ s€ 8z ž Qw r Ëv Qw I† lw (ˆ ‘… € Kˆ lˆ Qw ~ Qy ’q Œ† €
„ƒ € Br ‚ lw jv F} 8z Vq lˆ (Ÿ lˆ † sq [t (ˆ Œ† ’€ ‘} lˆ ’q Qw Æ Xu .ˆ .u n˜   2š ”
Z
X E
Y ]
[ ^
\ `
 C
_ b
[ Z
a `
[ S< 
c fd 
e b
[ g
a h
 Jd ? E
e C
Y `
 E
i j
 E
i 
 l
 g
k nm 
 `
 B
n˜ 㚠™š lw +ˆ Ïu 8‚ u Hƒ Qw Qy ¬w ‡† xŸ 8‚ € F} r VŽ Qw nr 2š € ly u 8z lw +ˆ u r VŽ :æ Qw Br :} ÝÌ n£ Bp Qw “ƒ p u Qy ly € £ :ˆ Br q £
r u ht sq Ó 8z q Kˆ € Qy F} † lw s€ nr ‰ƒ € Ž |q Œ† ’€ ž~ |q Qw r lˆ Œ† u Qy Qy q ¢Ž Xu .ˆ lˆ Ãp Hu Œz q ¢Ž € ~ ½ q Hƒ Œ† :ˆ œ£ Qw ‡† p s€ :} †
p u ‹Š Qw r Ëv Œ† ’€ Œz q ~ :} Qw ly VŽ sq ‰Ì lw lˆ † Qw r Ëv Qy Qw ~ {z u Œz Qw q Kˆ ” 2š € ht ’q ‹Š q z lˆ lw € r +ˆ € B‚ žù Œz q sq (ä 㚠— u r Ž
™È ¡  ð p u ‹Š ¤q »u lˆ Qw ht Qw ly u z „ƒ € Br Hƒ sq :… I† „ƒ u Qy Qy q ¤Ž ‡† Bp ’q   Br 8‚ € Œz [t u ‡† lw € nr ‘à q ‡† Œz Qw q >Š u y
㚠ǟ lˆ ‡† sq ht I– u F… ‘… u 8z sq Br ‡† Qy ¾Ÿ Ž sq 8z Qw ‹Š q VŽ ‚ z € Æt :ä ¡  n˜ o— »L „ƒ € Ž q ”
  nr F… 8z Qw Br Hƒ Qw :… Qy |q ǟ € Ñ} ‰ƒ u nr Qw r lˆ Œ† u Qy :y Ïu Br sq £ r u ¼t sq Ó 8z q Kˆ € Qy F} † lw s€ r lˆ ǟ lˆ ‡† q t ½ +} lˆ I† ž~ Ÿ
F… ly u Hƒ Qw r xv »u lˆ p Hu Œz q ¤Ž Qy Qw ž~ z u 8z xŸ Qw nr ‡† Bp ’q Œz lw jv Bp Æ Ž Qw Œz q Hƒ Œ† € 8z ¾Ÿ u r ¤Ž q Ž Qw ‡† Qw r v
 q †‡ƒ p rˆKˆl£œwQ†‡ƒHp” ƒ‰€srB‚8”šF€syluz8wlˆ+urŽ¤t&urBŸxæ:wQrB}FÌnŽwlˆl†‡z8wQ~}:†‡wl€srˆ:ƒ‰€st¼q
£nwQ†‡pnæ(—™È™Ö¢t[€Ž}:yQqˆ:‚Þ€sz˜nšãšã–X†‡p€}+vpœ†‡pBqsŸ¾uHzŒqV€s‚¡†‡qsrŽqzŒwQŠ‹qŽ¤‚z{€t
p

‚8uwQzŒyQŸ¾€ylŽ¤ƒ‰€ŽqVurŽ¤ŸÇ€}Ñt[uŸxrBqqŽV†Œ€’‚qs†ƒHpn†‡pBq’ylu†‡qˆl†IŠ‹qzˆlwl€rn‚z€t
£n£n£” …+uXŽyl” ƒ‰€stÆwQ‚2Ÿ(€}¢£urB†ÃuyQy†‡pBq¤ˆlqƒH}:zŒwQ†Ÿx‚qu†}Fz8qˆK”
 B†‡qˆl†‡qŽ¤rˆKrˆ qXylŽ:u…×€sru.Š‹wQz8†‡}‘uyt[uƒ“pBwQrIq’£nwQ†‡pu»ˆlt[uyQyà+qŽ þ u†ÃüX” ú
wQrˆl†ŒuyQylu†‡wl€r”•(pBq|‚wQz{ˆl†I†‡pBwQrvˆ8€¤Ž(€|wlˆ:†8€|ƒ‰€srB‚wlvj}:zŒq’†‡pBq’æ:—™È±Öх+uzuthÓ
qs†qsz{ˆ:wQr /etc/ldap.conf:
# ldap.conf
#
# Location of LDAP server.
# Must be resolvable without using LDAP!
#
host brick.skills-1st.co.uk
#
# The distinguished name of the search base.
#
base dc=example,dc=org

:• Bp lw .ˆ lˆ Qw ht F… Qy ’q „ƒ € Br ‚ lw Ëv lw :ˆ q r € ‘} jv np Œ† V€ jv q I† ‡† Bp ¬w r v .ˆ v € Qw r jv X– † p s€ +} jv np n£ ’q n£ Qw Qy y
#

Œz q ‡† F} 8z nr Œ† V€ Xu :Ž VŽ [t s€ 8z Vq lˆ sq “ƒ F} Œz Qw † xŸ ly u ‡† sq {z ”
+• ’€ [t u ž ’q ‡† Bp ’q [t u Hƒ Bp Qw Br ’q ‘} lˆ ’q :æ ™— ±È ¢Ö 8‚ s€ z ‘… Xu Kˆ lˆ £ Վ u r ¢Ž jv {z s€ :} х ly € €  :} ‘… lˆ –
q Ž Qw † /etc/nsswitch.conf u r VŽ Hƒ p u r jv ’q Qy Qw Br q +ˆ Xu +ˆ lˆ p € n£ r Ð
passwd: files ldap
shadow: files ldap

•:pBq’q‚‚qƒH†Ã€‚B†pBwlˆ:wlˆ:†‡puH†Iyl€€sž}:…‘ˆ:£nw¬yQy}‘ˆlq’yl€ƒ„uy‚wQyQqˆ:‚wQzˆ0†ÃurŽ
group: files ldap

…Fz€vjzŒqˆKˆ:†Œ€’æ(—™È™Ö¢‚8€zurBŸž†pIw¬rÃvËr€†I‚Þ€s}:rŽ¤yl€ƒ„uy¬yQŸ(”H•:pBwlˆ.uyQyl€s£Íˆ:‚8€sz
ˆlŸ(ˆl†qstuHƒHƒ„€}FrB†8ˆ:†Œ€’~q’žqs…F†BwQr p qs†ƒÏ‚wQyQqEˆ MrBqsƒ“qˆKˆKuHzŒŸ¾Ž}:zŒwQrvË~ǀ€†‡}:…
£npBwQyQq’}‘ˆlqzuƒ“ƒ„€}FrB†8ˆ+uzŒq’pBqylŽ¤ƒ“qsrB†‡z{uyQyQŸÇ”
 ‚B†pBq|ruthqVˆlqzŒŠ‹wQƒHq’ƒ„uHƒHpBqVŽ:uqt[€ssr Mrˆlƒ‰Ž ‰wlˆ:z8}FrBrBwQrvj–XwQ†Bt[uŸx~q
rBqsƒ“qˆKˆKuz8Ÿx†Œ€’zŒqˆl†Œuz8†IwQ†B~q‚8€zŒq’æ:—™È±ÖÑyl€€ž}F…‘ˆ:£Í€sz8Ç”šãwQthwQyluz8yQŸž–
rˆKˆl£nwQ†‡ƒHp” ƒ‰€srB‚2wlˆ:r€sz8t[uyQyQŸ¾€srByQŸxz8qu„Ž¢€rBƒHq’…Fqsz…Fz{€sƒ“qˆKˆ+ˆK€VŽ(€sr¦D†
qs̉…FqƒH†urBŸxqs̉wlˆl†‡wQrv˅Fz{€sƒ“qˆKˆlqˆ:†Œ€’r€s†‡wQƒ“q|}:rB†‡wQy†‡pBqŸ¾uzŒq’zŒqˆl†Œuz8†‡qŽ
urŽ¤†pÃuH†IwQrBƒHyQ}+Žqˆ:†‡pBqVˆlpBqsyQy†pu†IŸÇ€}Ñ}+ˆlqŽV†Œ€Vˆlqs†uyQy†‡pBwlˆ:}:…Ñ‚z€t[nå 
șrnquXˆlŸx†‡qˆl†Iwlˆ:†Œ€’‚wQrŽV†‡pBq’p€sthqÓ8ŽwQzŒqƒH†Œ€z8Ÿ¾€s‚uÏ}‘ˆlqzƍpu†Iwlˆ:yQwlˆl†‡qŽVwQr
†‡pBq|æ(—™È™Ö׈l†Œ€zŒq’~ž}F†Ir€†IwQrn†pIq’yl€ƒ„uy…+uXˆKˆl£€sz{ŽV‚wQyQqÐ
:• Bp ’q 2š € ly u Œz lw (ˆ žŠ q {z lˆ lw s€ r € B‚ r Kˆ rˆ Xq ly (Ž u х lw :ˆ Ç~ Xu lˆ q Վ € nr ‡† Bp ’q Qw FÖ ly u Br q I† (æ ™— ™È Ö
echo ~fred

Qy Qw ~ {z u Œz Qw q +ˆ u r VŽ Qw Æ :Ž € q :ˆ r s€ B† ‘} lˆ q p q ‡† ƒ p 0y :Ž u ‘… ” ‰ƒ s€ Br ‚ „– F… Œz q ‚ q Œz 8z Qw r ’v Qw r lˆ † q Xu VŽ Œ† €
‘} lˆ Vq .u F… {z € jv {z u Æt „ƒ u Qy Qy q tŽ Å
¶ M10 § D´ ° ž, ãÀ Œ† V€ lˆ sq I† :} х ‡† Bp ’q ‘… u z u ht q ‡† q z Kˆ ” (• Bp q
F… z € ~ Qy q Æt n£ Qw ‡† #p D !¶ 80 ó Å´ )° , ãÀ lw (ˆ ‡† p u I† Qw Æ Ž sq F… q r :Ž +ˆ € r .u ‚ q u ‡† F} 8z ’q ‡† p u I† lw ˆ
Qw ht F… Qy q ht sq Br † q Վ Ž Qw ‚ ¡‚ sq 8z sq Br † Qy xŸ Qw r Ž Qw ‚ ‚ q 8z sq Br B† :æ ™— ™È ×Ö lˆ q Œz ‹Š q z .ˆ Kˆ |€ Qw † :Ž € q :ˆ r s€ †
q Xu lˆ Qw Qy xŸ Í£ s€ 8z x n£ Qw ‡† np ¤Î F… q Br :æ ™— ™È +Ö ” (• Bp q Œz Vq u Œz Vq .u Br :} ht ~ q z s€ 2‚ [t u Qw Qy Qw r jv Ó Qy lw lˆ †
u Œz “ƒ Bp Qw ‹Š q :ˆ ‰ƒ s€ Br Œ† Hu Qw Br Qw r xv Ž lw lˆ Hƒ +} Kˆ lˆ lw € r s€ B‚ † Bp |q :… z € ~ Qy q 
t u r Վ lˆ ‘} žv jv q lˆ † Qw r v
>Š u Œz lw € ‘} :ˆ £ € 8z ( u {z € F} r :Ž lˆ „– ‡† p s€ +} jv np B  p u ‹Š ’q r s€ B† žŸ sq I† [t „u Ž ’q Qw I† £ € Œz x ht ǟ lˆ q Qy 8‚ ”
ùz8qqsä(šã—Éwlˆ+ˆl}F…:…‘€ˆlqŽV†Œ€’~qVu~yQq’†Œ€’}+ˆlq|†pBq|Ö:ș—™æÕrˆKˆrqXylŽ:u…¢ƒ„€Žq–
~}:†IwQ†Iz8q›X}FwQz8qˆ+u.z8qs~ž}FwQylŽÕ€‚u†IyQquXˆl†I†‡pBq’t[uwQrnØ&yQwQ~žzuz8Ÿx†Œ€’t[užq|wQ†
£€sz8Ç”ȜvžuwQrB–X 2puŠ‹q’rÀ†IpuXŽV†‡wQthq’†Œ€’†‡qˆÒ†B†‡pBwlˆl–X~ž}F†IwQrn…:zŒwQrBƒHwQ…:yQq|wQ†
ˆlp€s}:ylŽ¤£€zŒx£nwQ†‡pn†pIqVˆKuthqVŽ:u†Œuφ‡pu†Ãˆl}F…:…‘€sz8†Œˆ:æ:wQrB}:ÌB”
us@)YE[Eivdfevdf>AiwbdJ YBE`_xkgmnEB
•:pBq’}‘ˆl}+uy£uHŸ¾€s‚B}+ˆlwQrvËæ:—™È±Öтހsz}‘ˆlqzu}F†‡pBqrB†‡wQƒ‰u†‡wl€rnwlˆ:†Œ€’yl€ƒ„u†‡q
†‡pBq¤uƒ“ƒ„€}FrB†IqrB†‡zŒŸxwQrn†‡pBqVŽwQzŒqƒH†Œ€zŒŸ¾urŽV†‡pBqsrn†‡z8Ÿx†Œ€¤ÄD~wQrŽ:¦{†Œ€’†‡pBq
ŽwQzŒqƒH†8€sz8ŸÕuXˆ:†pu†ÃuƒHƒ‰€s}:rI†–X…FzŒqˆlqsrB†wórvˆ‡pBq’…‘uXˆKˆl£€zŽÕ€sz€s†pIqz
ƒHz8qŽqsrB†‡wluylˆ+u„ˆ:zŒqƒHqwQŠ‹qŽV‚z€tƆ‡pBq’}‘ˆlqz”H rn†‡pBqVˆlwQth…FyQqˆl†Iƒ‰uXˆlqs–„†‡pBq
…‘uXˆKˆl£€zŽVwlˆ:…FzŒqˆlqrB†‡qŽV†Œ€’†‡pBqVŽwQz8qsƒH†8€sz8Ÿ¾ˆlqsz8Š‹qszwQrnƒHyQquzŒ–„~}F†B†‡pBqzŒq
uzŒqVu.rB}:th~qz€‚Bt[€zŒqVˆlqƒH}Fz8qVˆlƒHpBqthqˆK”
Ôö€ˆl†IʱrBwQ̉ӍyQwQžq¤ˆlŸÇˆl†‡qt[ˆ:r€£ wQth…:yQqsthqrB†IÖ:yQ}‘vžvžu~yQq’ȱ}F†‡pBqrB†‡wQƒ‰u†‡wl€r
Ôö€Ž}:yQqEˆ MÖFȱÔTˆ B€s‚ºˆK€sthq’‚8€zŒt&”•(pIw0ˆ+uyQyl€£ˆ+u}:†‡pBqsrB†wQƒ„u†‡w0€sr
thqs†‡p€Ž:ˆ:†8€|~žq|ƒ“purvjqŽVquXˆlwQyQŸx£nwQ†pÀ}F†BpuŠ‹wQrvˆŒ€|z8qsÓ¡ƒ„€st¼…FwQyQq|qŠ‹qsz8Ÿ
…Fz€vjzutƆpÃu†BthwlvjpI†BrBqsqŽ¤†Œ€’ƒHpBqƒH¾u.…‘uXˆKˆl£€z{Ž:”Ö:șÔTˆ:ƒ„uruylˆK€
wQth…FyQqthqsrB†I…+€syQwQƒ“Ÿ¾ˆl}FƒHpu„ˆ:†‡wQthqÓ8€s‚Ó8Ž(uŸxzŒqˆl†‡z8wQƒH†‡wl€rˆ+urŽ¢€†‡pBqz
ˆlqsƒ“}Fz8wQ†‡ŸxzŒq›j}:wQzŒqthqrB†ŒˆK”Èý…‘uzŒ†wQƒH}:yluzŒyQŸx…‘€£nqzŒ‚¡}Fy‚qu†‡}:zŒq’wlˆ:†‡pu†
ÖFȱÔöˆ:ƒ‰urn~qVˆl†Œuƒ“qŽ–IuyQyl€s£œwQrÃv˂8€zu.ƒHp€wQƒHqV€s‚ºu}F†‡pBqrB†‡wQƒ„u†wl€sr
thqs†‡p€Ž:ˆ+uHrÎV…FqzŒpu…‘ˆ.ˆlqsŠ‹qzuy:ŽwQ‚‚qsz8qsrB†B…‘€syQwQƒ“Ÿxt[€Ž}FyQqˆ:†Œ€’~qVuƒH†wQŠžq
uXˆ:£nqyQyl”Èш:£nwQ†pn˜nšãšã–XÖ:șÔwlˆ:wQth…:yQqst¼qsrB†‡qŽV£nwQ†‡pˆlpuHzŒqŽ¤yQwQ~žz{uzŒwQqˆ
ˆK€|z8qӍƒ„€rB‚wlvj}Fz{u†‡wl€rnwlˆ+›X}FwQ†‡q’quXˆlŸÇ”
à‘qŽ þ u†‡–Xš¥}Fšãç:–„ÔöurŽzužq–‹urŽ¤ùžz8qsqä:šã— uHyQy…Fz€Š‹wlŽq’…‘uyt qXylŽ(u…
t[€Ž}FyQqˆ+Žqsz8wQŠ‹qŽ¤‚z{€st †‡pBq’ÖFȱ—™æ¢ƒ‰€Žq”š2€yluz8wlˆ:wQrBƒHyQ}+Žqˆ+u.t[€Ž}FyQq
~(uXˆlqŽ¢€rnwQÖ:ylurBqs†Bƒ„€Žq–X†‡p€}‘vjpnwQ†Iwlˆ+›X}FwQ†‡q’…‘€ˆKˆlwQ~yQq’†Œ€’z8qs…FyluHƒHq’†‡pBwlˆ
£nwQ†‡pn†pBq|Ö:ș—™æՊ‹qzˆlwl€rnwQ‚Bz8q›X}FwQz8qŽ(” ¡ruyQyƒ‰uXˆlqˆl–„ƒ„€rB‚wlvj}Fz{u†‡wl€rnwlˆ
ˆlpuzŒqŽ¤£œwQ†‡pn†‡pBq’q›X}FwQŠ>uyQqrB†I˜nšãš™t[€Ž}:yQqVˆK€|yQw¬†‡†‡yQq’qs̉†zu.£Í€sz8xwlˆ
zŒq›j}:wQzŒqŽ:”
•+€’}‘ˆlq’æ(—Ýȱ֢‚8€szu}F†pBqsrB†‡wQƒ‰u†‡wl€rnwlˆ+u.t[u†‡†‡qz€s‚BwQrˆl†8uyQyQwQrvˆ‡pBq
…‘uyt qXylŽ:uH…Ñt[€Ž}FyQqVurŽ¤qŽwQ†wQrv’†pBq¤u…F…:z€…FzŒwluH†‡q|Ö:șÔƒ„€rB‚wlvžÐqswQ†pBqsz
€sz€rBqV€szt[€zŒq’‚wQyQqˆ:wQr /etc/pam.d” +æ € € x 8‚ € z
‡† Bp |q Qy Qw Br Vq Ž q lˆ Hƒ Œz Qw ž~ Qw r ’v +… u yt Xq F} Br Qw nÌ u r ¢Ž Xu (Ž ¤Ž ‘… u yt Xq ly (Ž u … u I† ‡† p u B† ‘… s€ Qw Br Œ† ” ¤Î r
/etc/pam.conf
‘à q Ž þ u B† :æ Qw Br :} ÝÌ ‡† Bp ’q ‚ Qw Qy ’q lw ˆ /etc/pam.d/system-auth urŽVwQ†
yl€€Çˆ:yQw¬q’†pBwlˆKÐ
auth required /lib/security/pam_env.so
auth sufficient /lib/security/pam_unix.so likeauth nullok
auth sufficient /lib/security/pam_ldap.so use_first_pass
auth required /lib/security/pam_deny.so
account required /lib/security/pam_unix.so
account required /lib/security/pam_ldap.so
password required
/lib/security/pam_cracklib.so \
retry=3 type=
password sufficient /lib/security/pam_unix.so nullok \
use_authtok md5 shadow
password sufficient /lib/security/pam_ldap.so use_authtok
password required /lib/security/pam_deny.so
session required /lib/security/pam_limits.so
session required /lib/security/pam_unix.so
session optional /lib/security/pam_ldap.so
˜¼€†‡q’†‡pu†BŸÇ€s}׈lp€s}:ylŽ¤r€†IqŽwQ†B†‡pBq’‚wQyQq¤ŽwQzŒqƒH†yQŸ¾€srnà+qŽ þ u†Iæ(wQrB}FÌBÐ
}‘ˆlq’†‡pBq žÀ*V0¡µ ,rzs6´ ߅:z€vz{utƆŒ€’t[uwQrB†ŒuwQrnwQ†Œ”
˜¼€†‡qVuylˆK€’†‡pu†I†pBq|qÌButh…FyQq’ƒ„€rB‚wlv˂wQyQqˆ+ˆl}F…F…:yQwQqŽV£nwQ†‡pn†‡pBq
{Ŷ

ˆK€s}:zŒƒ“q|ƒ‰€Žq|thwlvjpB†ÃvjwQŠ‹q’æ:—™È±ÖÑt[€zŒq’ƒ„€rB†‡z{€sy†purnŸ(€}¢£urB†‡–
wQrBƒHyQ}‘ŽwQrvˆ‡pBqVu~wQyQwQ†‡Ÿx†8€¤ˆl}:…F…FyQŸ¾uruyQ†‡qz8ru†‡q|…+uXˆKˆl£€zŽV‚8€sz
‡µHµ„ÀҔ
š2€syluHzŒwlˆ:}+ˆlqˆ p q†‡ƒ p …‘ut[” ƒ‰€srB‚ˆK€’†‡pBq’‚8€zŒt[uH†Iwlˆ+ˆlyQwlvjpB†‡yQŸ¾ŽwQ‚‚qzŒqrB†Œ” þ qzŒq
wlˆ+u»ˆlrBwQ…F…Fq†ÃŽqˆlƒHz8wQ~wQrvˆ‡pBqVu}F†pBqsrB†‡wQƒ‰u†‡wl€rnzŒq›j}FwQz8qst¼qsrB†Œˆ:‚8€z
SÅ µ ‹f´ ,‹Ð
rlogin auth sufficient \
/usr/lib/security/$ISA/pam_ldap.so.1
rlogin auth sufficient \
/usr/lib/security/$ISA/pam_rhosts_auth.so.1
rlogin auth required \

¼˜ € ‡† ’q ‡† Bp ^q |   㚠ýÈ >Š u Œz lw Hu ~ Qy q Ð ‡† Bp lw :ˆ lw :ˆ ‡† Bp ’q   r lˆ † Œz F} “ƒ ‡† lw € nr 㚠sq B† ™È 8z Hƒ Bp Qw ‡† q Hƒ ‡† :} Œz q –
/usr/lib/security/$ISA/pam_unix.so.1

n£ Bp Qw Hƒ p u Qy ly € £ :ˆ 8‚ € Ãz Xû Xú Ó ž~ Qw Æ u r Վ Nî X} Ó ~ Qw B† F… z € jv z u [t :ˆ 8† |€ ‰ƒ s€ Ó q ‰Ì lw lˆ Œ† ” 㚠† Œz Qw Hƒ † Qy Ÿ
‡† Bp lw :ˆ ht q u r :ˆ ‡† p u B† Qw B‚ ǟ s€ ¢} 8z sq F… ly Hu Hƒ Vq u Br xŸ FÖ ±È  Ô [t € Ž F} Qy q :ˆ ǟ € } lˆ p € F} ly Ž
F… z € ‹Š lw Ž ’q (~ € ‡† np Xû Xú Ó ~ Qw † u r ¢Ž Nî X} Ó ž~ Qw I† ‹Š sq {z lˆ lw s€ r :ˆ ž~ F} Æ Kˆ ’€ 8‚ u z B  p u ‹Š ’q r s€ I† 8‚ € F} r Ž
u Br ¾Ÿ Nî X} Ó ~ Qw I† :… z € jv z u [t :ˆ +} lˆ Qw r Vv u :} ‡† Bp q Br ‡† Qw „ƒ u ‡† lw € nr (• Bp lw :ˆ n£ Qw Qy y F… {z s€ Ç~ u ~ Qy Ÿ
Hƒ p u r jv q 9” C” ”
ù 8z q sq (ä 㚠— u ly Kˆ ’€ ‘} lˆ q ˆ p sq † ƒ p ‘… u [t ” ‰ƒ s€ Br 2‚ ~ :} I† p Xu +ˆ »u lˆ Qy lw jv Bp ‡† Qy ¾Ÿ Ž Qw ‚ ‚ q Œz q Br †
ly u ǟ s€ :} Œ† ” þ q Œz ’q lw :ˆ +… u Œz † s€ B‚ † Bp ¤q lˆ q Hƒ † lw s€ nr 8‚ € z ly € jv Qw sr ¡ u r ¤Ž ‡† Bp +} :ˆ 8z ly € jv Qw nr Œ† € $€  Ð
login auth sufficient pam_skey.so
login auth requisite pam_cleartext_pass_ok.so
login auth sufficient /usr/local/lib/pam_ldap.so \
try_first_pass

o Bp sq 8z Vq .u FÖ ±È 
login auth
Ô ‘… Xu Kˆ lˆ £ € z VŽ Hƒ ly u +} lˆ ’q p Xu :ˆ ~ q sq Ír Ž q ‚ Qw Br q ~Ž  Xu :ˆ Qw nr ‡† Bp ’q ‘à q Ž
required pam_unix.so try_first_pass

þ u I† sq BÌ u ht :… Qy ¤q u Ç~ s€ ‹Š 2q § X– ‘… u yt Xq ly :Ž u ׅ ҈ :} F… ‘… € Œz Œ† :ˆ “ƒ p u r v Qw r Ëv ‘… Xu Kˆ lˆ £ € z (Ž ˆ
‘} lˆ Qw r Ëv (æ ™— ™È ×Ö Kˆ ’€ ‡† Bp ’q ‘} lˆ q z Ir q q ¤Ž Br q ‹Š sq z ž r € £ ‡† p u B† :æ ™— ±È ÑÖ 0w :ˆ ~ q Qw r Ëv ‘} lˆ q Ž
z u ‡† Bp q z ‡† p u nr ly s€ ‰ƒ u y ‚ Qw Qy q Kˆ ”
o Qw ‡† np (~ € ‡† np r Kˆ rˆ Xq ly :Ž u ׅ u r ¤Ž ‘… u yt Xq ly (Ž u х Qw nr F… ly u “ƒ ¤q € nr Hƒ Qy Qw q Br I† [t u Hƒ Bp Qw Br q lˆ ‹– u Qy y
‘} lˆ q Œz Ó [t u r Xu jv q ht sq Br I† ‰ƒ u nr ~ Vq :Ž € Br |q ‡† Bp {z s€ +} jv np ‡† Bp ¤q Ž Qw Œz q Hƒ Œ† € Œz ǟ ”
ÉR ¾Y W Pd =  € Þe _ Í ¾Y W =m œ 4f ƒÙ ‚ ì Ù ê é „
2š u ht (~ .u p Xu :ˆ p Xu VŽ ‡† Bp ¤q Hu ~ Qw Qy Qw ‡† xŸ Œ† V€ u Hƒ Æ Xu +ˆ Hu nr b˜ (• 8Ó lˆ ‡† žŸ Qy |q :Ö Œz Qw [t Hu Œz xŸ œ— s€ [t u Qw r
™Ø s€ Br † z € Qy Qy sq z 8‚ s€ z Kˆ € ht |q † Qw ht q ” +à sq “ƒ sq Br I† 8z sq Qy q Xu lˆ q :ˆ p u ‹Š ¤q Xu (Ž Ž q ¢Ž .u 8‚ Hu Hƒ Qw Qy Qw ‡† xŸ Œ† €
lˆ Œ† € Œz ’q ‡† Bp ’q FÖ ™— Ø ãš ™È Ô :Ž u 8† .u Qw r u nr (æ ™— ™È ×Ö Ž Qw 8z sq “ƒ Œ† € Œz ǟ ” (• Bp lw :ˆ lw :ˆ “ƒ Qy q u 8z Qy Ÿ
[t u Œz ž q Վ Xu :ˆ sq ‰Ì :… sq 8z Qw ht sq Br Œ† u y ‰ƒ € Ž |q Qw nr 2š u ht Ç~ .u ‹ú ” ‹ú ” »ú ‡† p € ‘} jv np ‡† Bp |q 2š u ht Ç~ u Ó
:• P˜ T… F… z € ½ q Hƒ I† “ƒ ly u Qw [t :ˆ Œ† |€ ž~ |q [t € Œz Vq Xu Ž >Š u Br “ƒ q VŽ Qw nr ‡† Bp lw +ˆ u Œz q Xu ” :• Bp ’q ‡† £ €
žŠ q z lˆ lw € r :ˆ p u ‹Š ¤q Ž Qw ‚ ‚ sq 8z sq Br Æ u :… F… z € u Hƒ Bp q Kˆ Ð [t u Qw r lˆ ‡† Œz q u Æt 2š u ht (~ »u Hu Qw [t :ˆ Œ† €
F… z € ‹Š lw Ž ’q o Qw r :Ž € £ lˆ Ó ±Ê Br Qw ÝÌ Qw Br ‡† q v {z u ‡† lw € Br X– n£ Bp q Œz ’q 2š u ht Ç~ u Ó :• P˜ … u Qw [t :ˆ 8‚ € z u
„ƒ € ht F… Qy sq ‡† ’q :Ö Ý— Ø Qw ht F… Qy sq ht q Br Œ† u ‡† lw € nr ‡† p u † ½ +} ҈ B† p u F… F… q Ãr :ˆ 8† |€ 8z F} r € nr ™Ê Br Qw Ì
z u ‡† Bp q Ãz ‡† p u nr o Qw r (Ž s€ £ Kˆ ”
  B‚ 2š Hu ht (~ .u lw :ˆ ¬w Ãr lˆ 8† u Qy Qy q Վ € r .u [t u Hƒ Bp Qw Br ’q +} lˆ Qw r ^v , Œ² S² { D
¶ Mbu r &Ž
 -'{ D
¶ MßQw †
n£ Qw Qy :y € B‚ „ƒ € :} z lˆ ’q ‘} lˆ ’q ‡† Bp q ht ‹– Kˆ ’€ Br q ‡† £ € Œz ǝ :ˆ 8z F} Br Br Qw r Ëv 㚠[Ô Õä n£ Qw ‡† np “ƒ Qy q u 8z ‡† q ‰Ì †
‘… Xu Kˆ lˆ £ s€ {z :Ž :ˆ [t u xŸ r s€ B† Br sq q ¤Ž Œ† V€ :Ž ’€ [t s€ 8z |q † Ãp u nr † Ãp Hu Œ† ” :• Bp q Œz Vq u Œz q
 Xu ŽŠ>urB†ŒuXvjqˆ:†8€|†‡pBq’ÖF—™Ø t[€Žqsy†‡p€}‘vjpB–‹ˆK€’š2uth~(uX¦óˆ:t[€sŠ‹q’†Œ€|ƒ“yl€ˆlqz
wQrB†‡qvjz{u†‡wl€rn£nwQ†‡pnæ(—™È™Ö¢wlˆ:…‘uz8†‡wQƒH}:yluzŒy¬ŸV£œqsyQƒ‰€sthq”
•+€’qru~yQq’æ:—™È±Ö ˆl†Œ€z{uXvjq|‚8€zƍpBq|Ö:—™Ø–Xš2uth~Çu.th}+ˆl†I~q’ƒ„€rB‚wlvj}Fz8qŽ
£nwQ†‡pn†‡pB^q ††¥£œwQ†‡p †¥ylŽ(u…‘ˆKut€…F†‡wl€r”•(pIwlˆ(ƒ„€st¼…FyQqs†‡qyQŸ¾€sŠ‹qzŒz8wlŽqˆ:yl€sƒ‰uy
ˆl†Œ€sz{uXvjq¤€‚BšãÈ±Ô Ž(u†Œu»ˆK€gŸÇ€s}¢ƒ„urBr€†I}+ˆlq|†pIqVˆKuthq’~wQruz8ŸxwQrn~(€†‡p
t[€ŽqˆK”
•:pBq’æ(—™È™Ö:Ó8ˆl…FqƒHwQ‚wQƒO…‘uz8†Œˆ+€‚B†‡pBq’š2uth~Çu.ƒ‰€srB‚wlv˂w¬yQq|yl€€xyQwQžq|†pBwlˆKÐ
ldap admin dn = cn=manager,dc=example,dc=org
ldap server = brick.skills-1st.co.uk

ÉÈ ht Qw Br Qw [t u y 2š u ht (~ Ïu FÖ ™— &Ø ‰ƒ € Ir ¡‚ lw ’v 0w +ˆ lˆ p s€ n£ nr Qw œr ™È F… F… q r Ž Qw ™Ì ‹ú ”
ldap suffix = dc=example,dc=org

¼˜ € ‡† ’q ‡† p u I† † Bp |q (æ ™— ™È ×Ö lˆ F} ‚ ‚ Qw nÌ jv Qw ‹Š sq œr Ip q Œz ’q [t u ‡† “ƒ Bp q :ˆ † Ip Vq lˆ q u Œz “ƒ np (~ Xu lˆ q
‘} lˆ q ¤Ž ~ xŸ r Kˆ rˆ Xq ly (Ž u … u r ¤Ž ‘… Hu yt Xq ly :Ž u ‘… ” (• Bp lw +ˆ u Qy ly € £ :ˆ 2š u ht (~ .u 8† ¤€ lˆ p u 8z |q † Ip q
sq Br ‡† 8z Qw q :ˆ † p u Æ u Qy Œz q Xu Ž xŸ q ‰Ì lw lˆ I† Œ† V€ Ž q lˆ Hƒ 8z Qw ~ ’q F… q s€ F… Qy q p u Hƒ ‰ƒ s€ :} Ir 8† Kˆ ” ˜ s€ ‡† Vq u ly Kˆ €
‡† p u I† ‡† Bp Vq Xu Ž ¼t Qw nr ™— õ˜ lw .ˆ v Qw ‹Š q r Ð Qw nr ‡† Bp lw :ˆ ‰ƒ Xu lˆ |q 2  p u ‹Š ’q ‘} lˆ q ¤Ž ‡† Bp ’q r u ht Vq s€ ‚
‡† Bp |q ™— 㚠ýÈ [t u r Xu jv q z M q j› F} Qw >Š u Qy q Br I† Œ† ’€ {z € € I† Qw r Ž Qw Œz q Hƒ Œ† € Œz xŸ ‡† q Œz [t ˆ M „– ~ :} I† Qw †
lˆ p s€ :} ly VŽ ~ ’q ‘… € Kˆ lˆ Qw ~ Qy ’q Œ† ’€ +} lˆ Vq .u Qy q Kˆ :ˆ ‘… € n£ q Œz ‚ :} y   ý— Qw B‚ ™È Ø +æ +ˆ u 8z Vq lˆ sq B† F} …
„ƒ u 8z sq ‚ :} Qy Qy ǟ ” 2š u ht Ç~ .u Br sq q :Ž :ˆ 8† |€ ž~ Qw r ¤Ž Œ† ’€ ‡† Bp Vq Ž Qw 8z q Hƒ Œ† € Œz ¾Ÿ Xu +ˆ Ïu ‘} lˆ q Ãz n£ Qw † p
n£ Œz Qw † |q F… q Œz ht lw Kˆ lˆ lw € r Kˆ ’€ ‡† p u I† Qw I† ‰ƒ u nr Qw r lˆ sq 8z I† Br q @£ u ‡† ‡† 8z Qw ~ :} ‡† q :ˆ Qw nr sq Br ‡† 8z Qw q Kˆ H” :• Bp q
‘… Xu Kˆ lˆ £ € z VŽ lw +ˆ lˆ Œ† s€ 8z q VŽ Qw nr ‡† Bp Vq lˆ sq Hƒ 8z sq 8† +ˆ :Ž u Œ† u Ç~ Xu lˆ ’q ‘} lˆ Qw r Ëv ‡† Bp |q ‰ƒ s€ ht [t Hu Ãr (Ž Ð
ʙrB‚8€zŒ†‡}:ru†‡qsyQŸž–X†pIq’…‘uXˆKˆl£€zŽVpuXˆ:†Œ€’~q’†‡Ÿž…FqŽÕ€rb†pBq|ƒ‰€stht[urŽVyQwQrBq
smbpasswd -w <password>

ˆK€|t[uHqVˆl}Fz8q’Ÿ(€}¢ƒHyQquz€}F†urBŸxƒ„€tht[urŽӍpBwlˆl†8€sz8Ÿx‚wQyQqˆ+uH‚†‡qsz8£uz{Ž:ˆKå
š2uth~(uÏwQrI†z€Ž}:ƒHqˆ+ˆlqsŠ‹qzuyrBq£@u†‡†zŒwQ~ž}F†‡qˆl–‹ˆK€’wQ†Œ¦§ˆ+ˆlƒ“pBqst[u.‚wQyQq’th}+ˆl†
~q’ƒ„€…FwQqŽ¤‚z{€st 8† |€ ‡† Bp q
lˆ sq 8z žŠ q z lˆ “ƒ Bp sq [t »u Ž Qw Œz q Hƒ Œ† € Œz ¾Ÿ u r ¢Ž u r u :… F… z € F… Œz lw u † |q Qw Br Hƒ Qy +} Ž Vq lˆ Œ† u ‡† q ht sq Br I† p Xu ˆ
samba-2.2.2/examples/LDAP/samba.schema

Œ† |€ ž~ ¤q Xu (Ž Ž q ¤Ž Œ† |€ )² 6 MX¶ J ¡0 µ r, z ” (• Bp Vq lˆ Hƒ Bp q [t .u ‚ Qw ¬y ¤q lˆ :} F… F… Qy Qw q VŽ ‡† Œz ¬w q :ˆ 8† |€ 8z sq Ó
Ž q ‚ Qw Br |q ‹¶ Å´ U²  6 M‡ « ° Kˆ ’€ ‡† Bp lw :ˆ Hƒ ly u +} lˆ |q ¼t ‘} lˆ I† ž~ |q ‰ƒ s€ ¼t ht sq Br ‡† q ¢Ž € F} B† ~ q 8‚ s€ 8z q
Œz q lˆ Œ† u Œz † Qw Ãr Ëv † Ip Vq lˆ q Œz ‹Š q z ”
2š u ht (~ .u Br q q (Ž :ˆ Œ† V€ lˆ sq I† :} х ‡† £ ’€ Br q £ ‘… Xu Kˆ lˆ £ € z VŽ p Xu lˆ Ip q +ˆ u r ¢Ž lˆ q ‹Š sq {z u y
s€ ‡† Bp q z u † ‡† Œz Qw ž~ F} ‡† q :ˆ 8‚ € Ãz q u Hƒ np ‘} lˆ q z H” :• Bp ’q ‘… Xu Kˆ lˆ £ € z ¤Ž p Xu lˆ Bp q :ˆ „ƒ u Br r € I† ~ q
Ž q Œz Qw ‹Š q ¤Ž ‚ {z s€ Æt † Ip ’q ±Ê Ir ¬w ÝÌ ‘… Xu Kˆ lˆ £ € z Վ :Ž u Œ† u I– Kˆ |€ ž~ |q :… Œz q ‘… u Œz q ¤Ž 8† ¤€ lˆ :} F… F… Qy Ÿ
Br sq £ +… Xu Kˆ lˆ £ € z (Ž :ˆ 8‚ s€ z q u Hƒ np +} lˆ sq {z Ð
ʙrB‚8€zŒ†‡}:ru†‡qyQŸ–„†‡pBwlˆ:wlˆ:£npBqzŒq’†‡pBq’qs̉…FqzŒwQt¼qsrB†Œuyru†}Fz8q¤€‚B†‡pBq’ƒ„€Žq
smbpasswd -a <username>

ˆl†ŒuzŒ†8ˆ:†Œ€¤ˆlp€£ †‡pBz{€s}+vjp”š2€sthqV€‚B†‡pBqVu†‡†‡z8wQ~}F†qˆ+vjq†I~(uXŽVŠ>uyQ}FqˆKÐwQr
…‘uzŒ†wQƒH}Fyluz8'–
Œ´Å¶bvjqs†Œˆ+ˆlq†I†Œg€ ˆXqsz{€–‹urŽ¤~(€†‡pb)² (%8¯±µ °ur"Ž 
µ zsf´ D° © „À*V
vq†IŠ>uyQ}:qˆ:wQrBƒ“yQ}‘ŽwQr^v ‰™Óq̉…‘urˆlwl€rˆ:†‡pu†ÃuHzŒq’r€s†B…Fz€…FqzŒyQŸxpurŽyQqŽ
£npBqsrn†pBq¤Ž(u†Œu.wlˆ:}+ˆlqŽ(”•(pBqˆlq’rBqqŽV†Œ€’~q’‚wQ̉qŽ¤~žŸxpÃuHrŽ:Р2}‘ˆlqŽ
Å
¶ MX²ŒS° 
S0WV߆Œ€’qs̉†zuƒH†B†‡pBq|ƒ‰€sth…:yóq†‡qVu†‡†‡z8wQ~}:†‡q¤ˆlq†IwQrB†Œ€Vu.‚wQyQq’‚8€sz
qŽwQ†‡wQrvj–‹urtŽ Å
¶ MµH¶‹´ z1‡ß†Œ€’…F}:†I†‡pBq’}F…‘Ž(u†‡qŽVŠ>uyQ}Fqˆ:~(uƒ“(”
ä:q‚8€sz8q¤uÏowQrŽ:€£ˆ:ƒHyQwQqrB†Iƒ‰ur ½ €swQrÍu»Ž:€t[uwQrB–XwQ†IrBqqŽ(ˆ+u»ÄD†‡zŒ}+ˆl†
uƒHƒ„€}FrB†Œ¦{†Œ€’~qVˆlqs†I}:… €rn†‡pBq|Ö:—™Ø™”owQ†‡pn†‡pBqVu…F…Fz{€s…Fz8wlu†‡qVˆÒƒ“zŒwQ…F†8ˆ
ƒ„€rB‚wlv}:zŒqŽ¢€rnš2uth~Çu–X†‡pBwlˆ:ƒ„uHrn~q’yluzvjqyQŸÕuH}F†Œ€t[u†‡qŽ¤~ž}F†I‚8€z†‡qˆl†
…F}Fz8…‘€ˆlqˆ: 2ƒHz8qu†‡qŽVʙrBwQ̉Ó8ˆl†‡ŸžyQqVuƒHƒ„€}FrB†8ˆ:~ŸxpurŽ:”•(pBqˆlq|puŠ‹q
}‘ˆlqzŒruthqˆ:‚8€sz8thqŽV~Ÿ¾u…F…FqrŽwQrvxfÄ |„¦†Œ€’†‡pBq’owQrŽ:€s£Íˆ+Äф€th…F}:†‡qsz8Ó
ruthq¦D–‹urŽ¢uz8q|t[uXŽq|z8quXŽŸx‚8€sz}‘ˆlq’£nwQ†‡pn†‡pBq’ƒ„€tht[urŽ:Ð
o Qw ‡† np ‡† Bp q ҈ ’q F… 8z sq +… u z u ‡† lw € r +ˆ :Ž € Br sq X– 2  £ Xu +ˆ u ž~ Qy |q 8† € ½ € Qw r u nr n˜ Օ Hƒ Qy Qw sq Br B† Œ† €
smbpasswd -a -m <computername>

ht ¾Ÿ :Ž € [t u Qw r u r ¤Ž ly € Ëv Qw nr ‘} lˆ Qw r Ëv † Ip Vq Kˆ u ht ’q ‘} lˆ q Œz r u ¼t ¤q u r VŽ ‘… Xu Kˆ lˆ £ € z Ž
‘} lˆ q ¤Ž œ£ Qw ‡† np ‡† Bp ’q ™Ê Br Qw ™Ì Hƒ Qy Qw q Br Œ† Kˆ ”
:• Bp q Œz ’q lw +ˆ € ž~ žŠ 0w s€ +} lˆ Qy ¾Ÿ Kˆ s€ ht ’q £ € 8z ¾ lˆ ‡† Qw Qy y Br q q Ž q Վ € nr ‡† Bp ’q :æ ™— ±È ÑÖ :Ö ™— Ø
„ƒ € Ž q X– ~ :} Æ € Br Hƒ Vq lˆ Œ† u ž~ Qy |q ‡† Bp q 8z ¤q u 8z ¤q Kˆ € ht ’q Qw Br ‡† q Œz q lˆ ‡† Qw r Ëv ‘… € Kˆ lˆ Qw ~ Qw Qy Qw ‡† Qw q Kˆ ” ¤Î Br q
s€ F… † lw s€ nr £ € F} ly VŽ ~ ’q Œ† V€ :Ž V€ u £ u xŸ n£ Qw ‡† np Ç~ u Hƒ ž F} ׅ :Ž € [t u Qw nr „ƒ € Br ‡† z € Qy Qy sq {z ˆ
u Qy Œ† € v q ‡† Bp q Œz ‹– u r Վ lˆ F} :… ‘… s€ 8z Æ Ž lw lˆ ‡† Œz Qw ž~ F} ‡† lw € r u r VŽ Œz q lˆ Qw Qy Qw sq Br “ƒ |q ž~ xŸ p u ‹Š Qw r v
Œz q F… Qy Qw „ƒ u † q VŽ :æ ™— ™È ×Ö lˆ sq 8z ‹Š sq {z :ˆ q Hu Hƒ p lˆ sq 8z ‹Š Qw r Ëv ‡† Bp ¤q Kˆ u ht Vq :Ž Hu Œ† .u Œ† V€ s€ Br Vq € z
[t s€ 8z |q 2š u ¼t (~ .u :Ö ™— ™Ø Kˆ ” B  p u ‹Š ’q žŸ sq I† 8† |€ £ € Œz ¾ € F} B† ‡† Bp |q q BÌ u Hƒ B† sq ‚ ‚ q Hƒ Æ € ‚
[t s€ ‹Š Qw r xv .u o Qw r (Ž s€ Í£ :ˆ Hƒ Qy Qw q Br I† ‚ z €  t € Br ¤q lˆ :} Hƒ p (Ž s€ [t Hu Qw nr „ƒ € Br ‡† z € Qy Qy sq z Œ† €
u Ãr € ‡† Bp sq {z ”
+æ € s€ ž Qw r xv u I† † Bp |q F… {z € ~ Qy q Æt ‡† Bp Vq s€ ‡† Bp q z £ u xŸ z € F} r Ž X– Qw Æ lˆ p € F} ly VŽ ~ ’q ‘… € Kˆ lˆ Qw ~ Qy q
Œ† ’€ Œz :} #r , Œ² U² '{ D
¶ Mbu r &Ž
 -{ Å
¶ MbXu žv u Qw r lˆ Æ u nr ™È “ƒ ‡† Qw ‹Š ’q ™— Qw Œz q Hƒ Œ† € Œz ¾Ÿ lˆ ǟ lˆ ‡† q [t ”
:• Bp Vq Kˆ u ht F… Qy q p sq † ƒ p ly :Ž u ‘… ” „ƒ € Br ‚ lˆ Bp Qw F… F… q ¤Ž n£ Qw † np ‡† Bp |q :Ö ™È ™— Õæ „ƒ € Ž ’q Qw Br Hƒ Qy +} Ž q ˆ
u nr sq BÌ u ht :… Qy |q ‰ƒ s€ Br ‚ lw jv :} z u ‡† lw € nr 8‚ € Ãz ‡† Bp lw :ˆ :… F} Œz +… € lˆ q X– ‡† p € ‘} jv np 2  p u žŠ ’q r € I† ‡† 8z Qw q Ž
Qw Œ† ”
"f œS Õk ×Ú 2Z ‡e jU ø
o Qw ‡† p lˆ F} “ƒ p .u „ƒ € Br Hƒ q Br ‡† z u † lw s€ r € ‚ :Ž Hu Œ† .u Qw nr ‡† Bp Vq Ž Qw 8z sq “ƒ Œ† s€ 8z žŸ ‹– lˆ sq “ƒ F} 8z Qw ‡† Ÿ
~ q „ƒ € ht q :ˆ ‹Š q Œz xŸ Qw ht ‘… € Œz 8† u Br Œ† Mí ‹û ï ” ™È Br ǟ € Br |q n£ p ’€ „ƒ € F} ly VŽ [t € Ž Qw ‚ xŸ ‡† Bp Vq :Ž u Œ† u
„ƒ € F} ly Վ v Qw ‹Š ’q ‡† Bp q [t lˆ sq Qy ‹Š q +ˆ u Hƒ Hƒ q Kˆ :ˆ Œ† ’€ >Š Xu lˆ I† Br F} ¼t ~ q z +ˆ € B‚ [t u Hƒ Bp Qw Br q +ˆ u Æ u
lˆ ‡† z € ž q ” 2š € ht Vq :Ž u Œ† Ïu Ir q q :Ž :ˆ Œ† ’€ ~ ’q F… {z s€ ‡† q Hƒ † q VŽ ‚ z € Æt F} r u :} ‡† p s€ 8z lw lˆ q Ž
‹Š Qw sq n£ Qw r žv XÐ u Qy ‡† p € ‘} jv p u Qy y +… Xu Kˆ lˆ £ € z :Ž +ˆ Hu Œz ’q p Xu lˆ Bp q Ž ‹– u Br ǟ s€ Br ’q n£ p ’€ „ƒ u nr 8z q Xu Ž
‡† Bp |q p Xu lˆ Bp q :ˆ „ƒ u nr [t € F} Br Æ »u Ž Qw Hƒ ‡† lw € r u Œz ¾Ÿ u ‡† 8† u Hƒ ǝ ” TÔ s€ 8z ¤q lˆ :} ~ ‡† Qy žŸ ‹– u Br ǟ s€ Br q
n£ p |€ ‰ƒ u nr Bp w ½ u Hƒ ¾ .u “ƒ Qy Qw sq Br ‡† 8Ó lˆ q Œz ‹Š q Ãz ‰ƒ s€ Br Br q Hƒ ‡† lw € nr „ƒ u nr ‚ q q VŽ (~ € v +} +ˆ :Ž u 8† .u Œ† €
u nr Qw r Ž Qw ‹Š lw Ž ‘} u y Hƒ Qy Qw q Br ‡† ‹– € z ‘} lˆ ’q ‡† Bp ’q Hƒ Qy Qw q Br Œ† ó¦ :ˆ F… 8z Qw ‹Š Qw Qy q jv q :ˆ Œ† ’€ [t € Ž Qw ‚ ¾Ÿ lˆ q Œz ‹Š q z
:Ž u Œ† Xu H” ™È Qy y ‡† Bp q lˆ |q ‡† Bp Qw r žv :ˆ „ƒ u nr ž~ ’q F… z € ‡† q Hƒ ‡† q ¢Ž Xu žv u Qw r lˆ ‡† ‹– u r VŽ :æ ™— ™È ¢Ö r € £ p Xu ˆ
[t € lˆ † s€ B‚ † Ip ’q Œ† € € ly :ˆ Br sq q Ž q ¤Ž Œ† V€ :Ž ’€ Qw Œ† ”
~
u 
e 
e 
[ 
 h
 O
Š A
> 
i  < ‹
> m
™Ø s€ Br ‡† {z s€ :y € ‹Š sq z n£ p |€ [t Hu VŸ 8z q Xu VŽ n£ p u Æ u r ¤Ž n£ p ’€ [t u xŸ Hƒ p u r jv |q n£ p u B† lw ˆ
sq ‰Ì q Œz “ƒ lw lˆ q ¤Ž n£ Qw † np ™È “ƒ Hƒ q Kˆ :ˆ ™Ø € Br ‡† z € y (æ lw lˆ Œ† Eˆ M ±È Ø +æ ˆ ¡ ” (• Ip 0w :ˆ lw +ˆ € Br ¤q € B‚ ‡† Bp ’q r € Br Ó
lˆ Œ† u r :Ž u {z Ž lw lˆ q ¢Ž u 8z q „u +ˆ s€ B‚ (æ ™— ™È :Ö ‹– u r VŽ Qw I† >Š u Œz Qw q +ˆ .u ly € I† ‚ {z s€  t € Br Vq lˆ sq 8z ‹Š sq z Œ† €
u r s€ ‡† Bp q z ” þ s€ n£ q ‹Š sq 8z ‹– u Qy y [t € Ž q Œz r lˆ q Œz ‹Š q z :ˆ :… z € ‹Š lw Ž ’q sq r € ‘} jv np „ƒ € Br ‡† {z s€ y 8† €
F… z € ‡† q Hƒ B† ‘… Xu Kˆ lˆ £ € z (Ž Kˆ ” þ sq 8z |q lw .ˆ »u lˆ Qw ht F… Qy ’q ™È Ø $æ lˆ q Hƒ ‡† lw € nr ‚ z € t
±Î F… q Br :æ ™— ±È ‘Ö Ð
 access to attrs=userPassword
by self write
by anonymous auth
by * none
access to *

:• Bp lw +ˆ u Qy ly € £ +ˆ u :} ‡† Bp sq Br † Qw „ƒ u ‡† q ¤Ž +} lˆ sq {z :ˆ Œ† ’€ Hƒ p u r jv |q † Bp sq Qw z s€ n£ nr +… Xu Kˆ lˆ £ s€ {z :Ž lˆ –
by * read

u Qy ly s€ £ :ˆ :} Br 8Ó u F} † Ip q Br ‡† Qw „ƒ Hu ‡† q VŽ ‘} lˆ q z :ˆ Œ† V€ u F} † Bp sq Br ‡† Qw ‰ƒ u ‡† sq I– u r ¤Ž F… 8z sq ‹Š q Br Œ† +ˆ u Qy y
s€ ‡† Bp q z u “ƒ Hƒ q `ˆ :ˆ 8† |€ ‡† Bp "q j²³)°
© H²Œ)² º+ µ ‡
I¶ ”   B† F… sq 8z ht Qw Œ† :ˆ 8z q Xu Վ u Hƒ “ƒ q Kˆ :ˆ Œ† ’€ q ‹Š sq 8z Ÿ Ó
‡† Bp Qw r Ëv sq ly lˆ q ” ¤Î ~ ‹Š lw € ‘} lˆ Qy xŸ Qw B‚ 2š u ¼t (~ .u :Ö ™— ÉØ (Ž u Œ† .u lw :ˆ ž~ sq Qw r xv lˆ Œ† € 8z q VŽ ‡† Bp sq r
lˆ Qw ht Qw ly u Ãz F… {z s€ † sq “ƒ ‡† lw s€ nr ht +} lˆ I† ~ ’q q ‰Ì ‡† sq r Ž q VŽ Œ† "€ f  © H²Œ ² º+ µ ‡
b¶ u r ŒŽ ž, À © H²ŒU² 
+ µ
¶ 
t
Š Tm nd E
[ 
i -
 s
u 
@ ) E
Y E
[ 
i v fd 
e 
 v nd A
> i
:• Bp Vq lˆ Qw ht F… Qy q lˆ I† 8‚ € Œz  t € B‚ Hƒ Qy Qw q Br Æ u :} ‡† Bp sq Br † Qw „ƒ u ‡† lw € nr lw :ˆ Œ† ’€ ~ Qw r VŽ Œ† ’€ ‡† Bp ¤q lˆ q Œz ‹Š q z
‘} lˆ Qw r xv .u “ƒ Qy q u 8z ‡† q ‰Ì I† ‘… Xu Kˆ lˆ £ € {z :Ž ” (• Bp lw :ˆ lw :ˆ ‡† Bp ’q ht q ‡† p € VŽ r s€ 8z [t u Qy Qy xŸ +} lˆ q VŽ ~ Ÿ
{ Å
¶ Mß8‚ € à z “ƒ Bp sq “ƒ ž Qw r Ëv ly € jv Qw nr +… Xu Kˆ lˆ £ € z (Ž Kˆ ” Çù s€ z lˆ q Hƒ :} Œz Qw ‡† žŸ „– ‡† Bp lw :ˆ ht q ‡† p € Ž
lˆ p s€ :} ly ¢Ž € Br Qy xŸ ~ ’q ‘} lˆ q VŽ n£ Qw ‡† np q Br Hƒ 8z Ÿ :… ‡† q VŽ „ƒ € Br Br sq “ƒ ‡† lw € r Kˆ ”

 

ÉÈ [t € Œz Vq lˆ q Hƒ :} Œz ’q ht sq † p € VŽ lw :ˆ Œ† ’€ ‘} lˆ Vq € Br ¤q € B‚ ‡† Bp ’q 㚠™È ¥š ×æ u :} ‡† Bp sq Br † Qw „ƒ u ‡† lw € r
ht sq “ƒ p u Br lw lˆ [t lˆ ‹– lˆ F} “ƒ p Xu :ˆ ™— 4  ݅ (ç 㚠:• Ó [Ô ™— ‹ñ *í ‹} ï H” :• Bp lw :ˆ lw :ˆ Ç~ Xu lˆ q Վ € r »u lˆ sq “ƒ Œz q †
 r € n£ nr Œ† ’€ Ç~ s€ ‡† np † Bp |q “ƒ Qy Qw sq Br Æ u r VŽ ‡† Bp Vq lˆ sq 8z ‹Š sq 8z ‹– u Qy ly € n£ Qw r Ëv 8‚ s€ z »u lˆ Qw ht F… Qy q
Hƒ p u Qy Qy q r jv sq Ó 8z q lˆ +… s€ r lˆ Vq lˆ Hƒ Bp q ht q ” 㚠™È 㚠Õæ lw +ˆ u ly Kˆ ’€ „ƒ Hu ‘… u ~ Qy Vq € B‚ Br q v € ‡† lw u † Qw r v
:Ž u Œ† .u q Br Hƒ Œz žŸ F… ‡† lw € nr Œ† ’€ F… z € ‡† sq “ƒ Æ lˆ F} Ç~ lˆ q j› :} sq Br Æ € F… q z u ‡† lw € r Kˆ ”
:æ ™— ™È ×Ö u ly Kˆ V€ lˆ F} F… +… s€ 8z Œ† :ˆ q Br Hƒ Œz žŸ F… † lw s€ r u r Վ u F} ‡† Bp q Br ‡† Qw „ƒ u † lw s€ nr +} lˆ Qw r v
:• {z u r lˆ ‘… € Œz B† +æ u žŸ q Ãz ¥š sq “ƒ F} 8z Qw ‡† ǟ Mí ‹ñ ï ” (• :æ ±š lw :ˆ Hƒ ly € lˆ sq ¬y xŸ Œz q ly u ‡† q ¤Ž Œ† ’€ ‡† Bp Vq € ly Ž q z 㚠㚠æ
lˆ Hƒ Bp sq ¼t sq ‹– u r VŽ ‘} lˆ q :ˆ ‡† Bp Vq Kˆ u ht |q “ƒ sq 8z ‡† Qw ‚ Qw „ƒ Hu ‡† sq Ó Ç~ Xu lˆ q VŽ ht q ‡† p € (Ž Kˆ ”   nr Qw 8† ˆ
lˆ Qw ht F… Qy q lˆ I† 8‚ € Œz ht X– (• :æ ±š F… z € ‹Š lw Ž q :ˆ F… {z € € ‚ € ‚ lˆ q Œz ‹Š q Ãz lw Ž sq Br ‡† Qw † ¾Ÿ u r ¤Ž F… {z € ‡† sq “ƒ Ó
‡† lw € r s€ ‚ (Ž u Œ† .u Qw nr † z u r lˆ Qw Æ Kˆ ’€ Qw B† lw :ˆ ‘} lˆ q ‚ F} y œ£ Ip q 8z |q F… ly Hu Qw Br ‡† sq ‰Ì B† ‘… Xu Kˆ lˆ £ € z (Ž ˆ
ht lw v Bp B† ~ ’q ‘… Xu Kˆ lˆ q Վ u Hƒ {z € Kˆ :ˆ ‡† Bp ’q Br sq 8† ” :• Bp Vq Kˆ u ht |q ¼t sq Hƒ p u Br lw lˆ Æt ‰ƒ u r u ly Kˆ |€ ž~ q
‘} lˆ q ¤Ž Œ† ’€ F… {z s€ ‹Š ’q ‡† Bp ’q lw Ž q Br ‡† Qw ‡† ¾Ÿ € B‚ ‡† Bp |q “ƒ Qy Qw sq Br B† Œ† ’€ ‡† Bp ¤q lˆ q Œz ‹Š q Œz „– n£ Bp sq 8z |q † Ip q
Hƒ Qy Qw q Br I† p Xu :ˆ ~ q q nr lw Kˆ ҈ :} q ¤Ž n£ Qw ‡† p ßu lˆ F} Qw Œ† u ž~ Qy |q Ëð ” ‹ñ Nò »Ž Hƒ q Œz † Qw ‚ Qw „ƒ u ‡† q ”
  I† lw +ˆ € ‚ ‡† q nr [t s€ 8z Vq u F… F… z € F… 8z lw u ‡† ^q  u r ¤Ž Hƒ Bp q u F… q )z ‰ Œ† ’€ +} lˆ ¤q .u F… 8z Qw >Š u ‡† ’q Ø sq 8z ‡† Qw ‚ Qw Ó
„ƒ u ‡† lw € nr ™È :} ‡† p s€ 8z Qw ‡† xŸ 8‚ € Ãz ‡† Bp lw :ˆ :… F} Œz +… € lˆ ’q z u † Ip q z ‡† p u r jv sq ‡† † Qw Ãr Ëv “ƒ sq 8z ‡† Qw ‚ Qw „ƒ u † q ˆ
‚ z €  t Ïu F… F} ž~ Qy Qw ݃ lˆ F} F… :… Qy Qw sq {z ” (• Bp lw :ˆ lw :ˆ q Xu lˆ xŸ Œ† V€ lˆ q I† :} х +} lˆ Qw r Ëv ±Î :… sq Br 㚠㚠.æ Ð
openssl genrsa -des3 -out ca.key 2048

s€ ¢} n£ Qw Qy y ž~ ’q F… z € ht F… ‡† q VŽ Œ† V€ lˆ F} F… F… Qy ¾Ÿ Kˆ € ht ’q Qw Br 8‚ s€ 8z [t u ‡† lw € r ” (• Bp ’q Œz q lˆ F} Qy Æ € ‚
openssl req -new -x509 -days 365 -key ca.key -out ca.cert

‡† Bp |q ‰ƒ € ht [t u r :Ž +ˆ u Ç~ s€ ‹Š ’q n£ Qw Qy y ž~ |q † £ ’€ ‚ Qw Qy q Kˆ XÐ Ïu ž sq xŸ ‚ Qw Qy Vq u r ¢Ž Ïu Hƒ q Œz ‡† Qw ‚ Qw ‰ƒ u ‡† q


‚ Qw Qy q H” :• Bp q lˆ ¤q Hu Œz ’q ‡† Bp ’q (~ Xu lˆ lw +ˆ € B‚ ‡† Bp ’q Ø q Œz † Qw ‚ Qw „ƒ u ‡† lw € nr ±È F} ‡† p € Œz Qw † (Ÿ ”
openssl genrsa -out ldap.key 1024

 s€ ¢ } n£ Qw Qy :y „u v Hu Qw nr ~ Vq Xu lˆ ž q VŽ 8‚ € Ãz Qw Br 8‚ € 8z [t u ‡† lw € nr Œ† ’€ ‚ Qw Qy y Qw nr ‡† Bp ’q Ø q Œz † Qw ‚ Qw „ƒ u † q
openssl req -new -key ldap.key -out ldap.csr

㚠lw jv Br Qw r ’v +à q X› F} q lˆ Œ† ” (• Bp |q “ƒ Œz Qw ‡† Qw ‰ƒ u y Qw ‡† q Æt lw :ˆ Œ† ’€ F… :} I† ‡† Bp ’q :æ ™— ±È ×Ö lˆ sq 8z ‹Š sq z r u ht q
wQrn£npBqsrn…Fz{€st¼…F†‡qŽV‚8€zÄDؙ€stht[€rn˜uthq¦ó”•(pBwlˆ+ˆlpÀ}FylŽV~q’†‡pBq|°³ÿ0ÞÀ
ruthq|†pÃuH†IƒHyQwQqrB†Œˆ:£nwQyQy}+ˆlq|£npBqrnƒ„€rB†ŒuƒH†wQrÃvˆpIqVˆlqzŒŠ‹qz” ¡†Iwlˆ:~qˆl†I†Œ€
}‘ˆlqVu.‚}:yQyQŸÓޛj}‘uyQw¬‚wQqŽÕŽ:€t[uwQrnruthq”˜€†‡q|†pu†I†‡pB"q Å
¶ M HU° ‡ß‚wQy¬q|w0ˆ:r€†
qsrBƒ“zŒŸž…F†‡qŽ¢uXˆ(wQ†Ith}‘ˆl†B~q’zŒquXŽV~Ÿx†‡pBq’æ:—™È±Ö ˆlqzŒŠ‹qzÐ…:z€†‡qƒH†I†pIwlˆ(‚wQyQq
Š‹qsz8Ÿxƒ„uz8qs‚}:yQyQŸÇåÊшlq|†pBq|؁Èý†Œ€Vˆlwlvjrn†‡pBq’ƒHqzŒ†wQ‚wQƒ„u†‡qÐ
openssl x509 -req -in ldap.csr -out ldap.cert -CA ca.cert \

:• Bp ’q 8z q lˆ :} Qy B† lw +ˆ .u ‚ Qw Qy ’q ‰ƒ u Qy Qy q ŒŽ D
¶ MJ ¡0 )° ³
ãÀ ‰ƒ s€ Br 8† u Qw Br Qw Ãr Ëv † Ip ’q Hƒ q 8z ‡† Qw ‚ Qw „ƒ u ‡† ’q 8‚ € Ãz ‡† Bp q
-CAkey ca.key -CAcreateserial -days 365

:æ ™— ™È ×Ö lˆ q Œz ‹Š sq {z ”  € Ñ} ‰ƒ u nr sq BÌ u ht Qw Br ’q Hƒ q Œz † Qw ‚ Qw „ƒ u ‡† q :ˆ n£ Qw ‡† np ‡† Bp ’q „ƒ € ht [t u r :Ž Ð
:• Bp ’q (æ ™— ™È ×Ö lˆ sq 8z ‹Š sq z Br q q (Ž :ˆ „ƒ € F… Qw q +ˆ € B‚ Qw Œ† +ˆ € n£ nr “ƒ sq 8z ‡† Qw ‚ Qw ‰ƒ u ‡† Vq u r VŽ  q xŸ ‚ Qw Qy q lˆ –
openssl x509 -in ldap.cert -text -noout

u r ¢Ž u ly Kˆ V€ .u ‰ƒ s€ :… ¾Ÿ s€ B‚ † Bp |q Ø ÉÈ Hƒ q 8z ‡† Qw ‚ Qw „ƒ u † q H” :• Bp ’q ž sq xŸ ‚ Qw Qy ’q ht +} lˆ Æ € Br Qy xŸ ~ q
Œz q Xu :Ž u ž~ Qy |q ž~ xŸ ‡† Bp ¤q lˆ q Œz ‹Š q Ãz F… {z € Hƒ q Kˆ lˆ ‹– Kˆ ’€ [t u ž ’q Qw I† [t € Ž gq ‹} Xò »ò u r ¢Ž € n£ Br q VŽ ~ Ÿ
‡† Bp ¤q € n£ Br q z € B‚ ‡† Bp Vq lˆ sq 8z ‹Š sq -z M ±Î F… q Br :æ ™— ±È ÑÖ ‰ƒ u nr ~ ’q Œz :} r Xu :ˆ {z € € ‡† ‹– € Ãz ‰ƒ u nr ~ q
Œ† s€ ly VŽ Œ† V€ lˆ sq B† ™Ê ¡  ɗ Œ† V€ u r s€ ‡† Bp q z ‘} lˆ sq z u ‚ ‡† q z ~ Qw r Ž Qw r Ëv ‡† Bp ’q (• Ø ÑÖ +… s€ 8z Œ† ˆ  ” ÑÈ :Ž Ž
Qy Qw Br q (ˆ Œ† |€ ² ‘ MX¶ J ¡0 µ r, ‘z Œ† ’€ ‡† q Qy y ‡† Bp Vq lˆ sq 8z ‹Š sq z u Ç~ s€ :} I† ‡† Bp ’q Br sq £ ‚ Qw Qy q Kˆ Ð
TLSCertificateFile /etc/openldap/keys/server.cert
TLSCertificateKeyFile /etc/openldap/keys/server.key

o Bp sq nr † Bp ¤q lˆ q Œz ‹Š q z lw :ˆ Br sq ‰Ì B† Œz q lˆ Œ† u 8z ‡† q VŽ Qw I† œ£ Qw Qy y ~ Vq u ž~ Qy |q 8† |€ +} lˆ ’q :• (æ 2š ” ¡  I† n£ Qw Qy y
TLSCACertificateFile /etc/openldap/keys/ca.cert

u ly Kˆ ¤€ lˆ :} F… ‘… € 8z I† 㚠㚠Õæ Qw B‚ Œ† € ly ¤Ž Œ† ’€ ž~ Qw r ¤Ž Œ† V€ u r ldaps:/// ±Ê ‘à .æ ” +• ’€ [t u ž q
, Œ² U² '{ D
¶ Mbu r &Ž
 -{ Å
¶ Mߑ} lˆ ’q (• :æ 㚠‹– Xu (Ž ¢Ž Ïu Qy Qw Br |q Œ† € p q ‡† ƒ p ly :Ž u +… ” „ƒ € Br ‚ € nr ‡† Bp q
Hƒ Qy Qw q Br I† [t u Hƒ Bp Qw Br q Kˆ Ð
•:pBwlˆ:…:z€Š‹wlŽqˆ:†‡z{urˆl…‘€zŒ†‡ÓyQqŠ‹qyqsrBƒ“zŒŸž…F†‡w0€sr€‚Bæ(—™È™Ö׈lqˆKˆlwl€rˆl–X†‡pB}+ˆ
ssl start_tls

vwQŠ‹wQrvxˆK€thq|…:z€†‡qsƒ“†‡wl€rn†Œ€’…‘uXˆKˆl£€zŽ:ˆ(qs†‡ƒ‰” þ €s£œqsŠ‹qzŒ–XwQ†ÃŽ(€sqˆ:r€†
v}+uzŽÕuXvžuwQrˆl†I~ǀvj}+ˆ+ˆlqsz8Š‹qsz{ˆKІŒ€Vvq†I†pIwlˆ(qs̉†‡z{u.…Fz{€s†qsƒ“†‡wl€srnwQ†Bwlˆ
rBqsƒ“qˆKˆKuz8ŸV†8€¤vjwQŠ‹q’†‡pBq’ƒHyQwQqsrB†Bt[uƒHpBwQrBqˆ+u.ƒ„€…FŸ¾€‚B†‡pBq|ØÈɃ“qsz8†‡wQ‚wQƒ„u†q
†‡pu†I£uXˆ:}+ˆlqŽV†Œ€Vˆlwlvjrn†‡pBqVˆÒqz8ŠžqzƒHqzŒ†‡wQ‚wQƒ‰u†‡q”à‘qƒHqsrB†BŠ‹qsz{ˆlwl€srˆ+€‚
,²ŒU² {'D
¶ Mbur&
Ž 
-{Å
¶ MߣnwQyQyŠ‹qsz8wQ‚Ÿx†‡pBqVˆlqzŒŠ‹qzwlŽqrB†‡wQ†ŸxwQ‚ByQwQrBqˆ+€‚B†‡pBwlˆ
‚8€sz8tuzŒqVuXŽ:ŽqŽV†Œ€ p q†‡ƒ p ylŽ(u…‘” ƒ„€rB‚8Ð
tls_checkpeer yes

¼˜ € n£ „– Qw ‚ .u Ç~ € jv +} +ˆ lˆ sq 8z ‹Š q Ãz lw :ˆ q Br „ƒ € :} Br ‡† sq 8z q ¤Ž ‡† Bp ’q “ƒ Qy Qw sq Br B† n£ Qw Qy y Qw ht ht q Ž 0w u ‡† q Qy Ÿ
tls_cacertfile /etc/ssl/ca.cert

Hƒ ly € lˆ |q ‡† Bp ’q :æ ™— ±È ÑÖ ‰ƒ s€ Br Br q Hƒ ‡† lw € r u r ¢Ž Ž sq Br xŸ ‡† Bp Vq u ‡† ‡† q ht F… ‡† q ¤Ž ly € jv Qw r ” ˜ s€ ‡† q
‡† p u I† ‡† Bp ’q Œz q Xu Kˆ € nr 8‚ s€ z ‡† Bp Vq Ž q Br Qw q VŽ ly € jv Qw nr „ƒ Hu nr ~ ’q p u z VŽ Œ† ’€ ‚ Qw Ãr VŽ Qw nr ‡† Bp q
Hƒ Qy Qw q Br I† ly € jv ‚ Qw Qy q Kˆ HÐ Qw I† [t u xŸ ž~ ’q Br sq “ƒ q Kˆ Kˆ u 8z xŸ Œ† ’€ ‡† :} Œz r € r .u Bp lw jv np Qy q ‹Š sq (y s€ ‚
Ž q ~ ‘} žv jv Qw r Ëv Œ† V€ lˆ sq ’q ‡† Bp ’q Œz q Qy sq >Š u Br I† ht q Kˆ Kˆ Xu jv q {å ˜ s€ ‡† Vq u ly Kˆ ’€ ‡† p u I† “ƒ sq 8z ‡† Qw ‚ Qw „ƒ u † q
‹Š sq 8z Qw ‚ Qw „ƒ u ‡† 0w s€ nr lw +ˆ Ïu 8‚ u Qw Œz Qy xŸ 8z sq “ƒ sq Br † Xu :Ž Ž ¬w ‡† lw s€ nr 8† &€ j, Œ² S² { D !¶ bu r &Ž
 { D !¶ bKˆ €
‡† Bp |q ‹Š q z lˆ lw € r +ˆ lˆ Bp Qw F… F… q ¤Ž œ£ Qw ‡† np [t € lˆ B† ±Î œš Ž lw lˆ ‡† Œz Qw ž~ F} † lw s€ r +ˆ (Ž |€ r € I† žŸ sq B† p u ‹Š q
Qw Œ† ”
š2uth~(uӍú‹” ú‹” ú»puXˆ:†‡pBqV€s…:†‡wl€srn†8€|}+ˆlq|•(æ:š™£œpBqsruƒ“ƒHqˆKˆlwQrvËæ(—™È™Ö:–
†‡p€s}+vjpnwQ†ÃŽ:€qˆ(rÀ†IŸžq†IpuŠ‹q’ƒ„€Žq’†Œ€|ƒ“pBqsƒ“¾ˆlqsz8ŠžqzƒHqsz8†‡wQ‚wQƒ‰u†‡qˆK”H•+€
qsru~žyQq’•:æ(šœuXŽ:ŽV†‡pBwlˆ:†8€|†‡pBqVvjyl€~(uy:ˆlqƒH†wl€sr€‚B†‡pBq’ƒ„€rB‚wlv˂wQyQqÐ
±Î ‡† Bp q Ãz r u ht q lˆ q Œz ‹Š Qw Hƒ ’q Hƒ Qy Qw q Br Œ† :ˆ Qy Qw ž ’q ™È :} Œ† s€ &t s€ :} Br Æ u r ¤Ž ±È 4Ô — (Ž ’€ r s€ I† žŸ q †
ldap ssl = start tls

p u ‹Š |q † Ip Vq u ž~ Qw Qy Qw ‡† xŸ Œ† ’€ ‘} lˆ ’q (• :æ œš u † u Qy Qy ‹– Kˆ ’€ F} Br 8‚ € Œz † F} r u ‡† q Qy xŸ ‡† Bp q Œz Vq u Œz Vq lˆ ‡† Qw Qy y
Hƒ Bp Qw Br ǝ :ˆ Qw nr ‡† Bp Vq u Œz &t s€ :} z ”
ë
‚ h d Õ_ nd Íô hS c hS n_ “U &’ ÍY wY lG m
:• Bp lw +ˆ Hu Œz q .u lw +ˆ lˆ ‡† Qw Qy y {z u ‡† Bp q Ãz ly Hu Hƒ ž Qw r žv ” :• Bp ’q :Ö ™È ™— Õæ ht lw jv z u ‡† 0w s€ nr Œ† € € ly +ˆ u Œz q
v € € ¤Ž 8‚ € z „ƒ € Ir ‹Š q Œz † Qw r xv u r ¤Ž ly € Xu Ž Qw r Ëv ‡† Bp ’q Qw Br Qw ‡† lw u :y (Ž u Œ† u X– ž~ F} † s€ Br “ƒ |q (æ ™— ™È ¢Ö lw ˆ
Qw nr ‘} lˆ Vq Xu :ˆ ‡† Bp ’q r u ht q ҈ q 8z žŠ Qw “ƒ ’q (Ÿ € ¢} n£ Qw Qy y Br sq q Վ s€ ‡† Bp q Ãz 8† € € ly :ˆ Œ† ’€ Hƒ 8z q Hu ‡† ¤q Hu Ãr Ž
[t u r Xu jv ¤q u “ƒ „ƒ € F} Br Œ† :ˆ q ‡† „ƒ ” 㚠“ƒ Œz Qw F… 8† :ˆ „ƒ u nr ~ ’q ~ :} Qw Qy Æ u {z s€ :} r ŒŽ Å
¶ X³² U° 
U40 bV Hu Ãr Ž
Å
¶ M Hµ ‹¶ ´ 1z ߇ ‚ {z s€ t ‡† Bp ’q ±Î F… q Br :æ ™— ±È Ö Ž lw lˆ ‡† Œz Qw ž~ F} † lw s€ Br ‹– € z u z € F} r Վ s€ Br Vq € B‚ ‡† Bp q
FÖ q Œz y [t € Ž F} Qy q :ˆ ‡† p u † lˆ F} F… +… s€ 8z I† (æ ™— ™È +Ö ” ±È r s€ ‡† Bp q z ‘} lˆ q ‚ F} y Œ† € € y lw ˆ Z… ” Ó u
v q Br q z u Qy Ó :… F} 8z ‘… € lˆ |q (æ ™— ™È ¢Ö ~ {z € £ lˆ sq z p [t € Ž Qw ‚ Qw q z ”
:• Bp q Œz ’q lw +ˆ u I† Qy q Xu lˆ Æ € Br ’q F… z € ½ q Hƒ I† :} r Ž q Ãz £ Hu VŸ 8† ¤€ Ž sq ‹Š q ly s€ ׅ lˆ F… sq “ƒ Qw ‚ Qw ƒ
[t u r Xu jv sq ht q Br I† Œ† € € ly :ˆ 8‚ s€ z :æ ™— ±È ¢Ö b˜ ¡  œš lˆ ǟ lˆ ‡† q [t Kˆ !” Å
¶ MžÀf´ D ò lw :ˆ Ç~ Xu lˆ q Վ u †
2š s€ :} Œz “ƒ sq Çù € z jv ¤q Hu Ãr VŽ sq ‹Š q Br ‡† ‘} Hu Qy óy xŸ :… ly u r :ˆ Œ† |€ p u ‹Š Vq .u n£ q ~ Ó Ç~ Xu lˆ q VŽ [t u r Xu jv sq Ó
ht sq Br I† Qw Br ‡† q Œz 8‚ u “ƒ q ”
×ê hS XZ a [Y BZ c hd Õ_ bk S
™È nr (æ ™— ™È ×Ö lˆ q Œz ‹Š q z F… z € ‹Š lw Ž ¬w r Ëv b˜ ¡  œš lˆ q 8z žŠ ¬w Hƒ ’q lw :ˆ Qy Qw ž q Qy xŸ Œ† ’€ p u r Ž Qy ’q ht :} Hƒ p
[t s€ 8z |q † z u ‚ ‚ Qw Oƒ ‡† p u r € Br q ½ +} lˆ Æ lˆ q Œz ‹Š Qw Hƒ Qw r xv DÄ n£ Bp Qw ‡† ’q ‘… Xu jv q Kˆ {¦ Œz q j› :} q lˆ Œ† +ˆ Kˆ €
F… sq 8z 8‚ s€ 8z [t u Br Hƒ ’q lw +ˆ u nr Qw ht ‘… € Œz Œ† Hu Ir B† „ƒ € r lˆ lw Ž sq {z u ‡† lw € nr Qw r .u ly u z jv ’q Br sq ‡† Í£ s€ 8z ( ”
o Bp sq r lˆ •w „ˆ Qw r Vv lˆ q 8z žŠ q {z :ˆ Qw I† lw :ˆ Br q Hƒ q Kˆ Kˆ u Œz xŸ 8† |€ ž r € £ p € £ ht F} “ƒ np ‡† {z u ‚ ‚ Qw σ 8† €
sq ‰Ì F… q Hƒ 8† Ð +• Hu ~ Qy ^q »I lˆ F} ht &t u Œz lw lˆ q :ˆ ‡† Bp ’q Œz q lˆ F} Qy Œ† +ˆ € ‚ Kˆ € ht Vq lˆ Qw ht F… Qy ’q ‡† q lˆ 8† :ˆ n£ Qw ‡† p
(~ s€ † –p
 -{ Å
¶ Mbu r ŒŽ j, ³² U² { Å
¶ ߄ƒ € Br ‚ lw jv F} 8z q :Ž ”
öÔ € Œz ’q 8z sq “ƒ sq Br B† ‹Š sq {z lˆ lw s€ r +ˆ € ‚ j, Œ² S² { Å
¶ ß[t u ž |q ¼t F} Hƒ œp [t s€ 8z ’q sq ‚ ‚ ¬w Hƒ Qw q Br I† ‘} 0ˆ ¤q € ‚
‡† Bp ¤q lˆ q Œz ‹Š q Ãz † p u nr ‡† Bp ¤q € ly Ž q z s€ Br q Kˆ ” :• Bp ’q ‘} lˆ Vq € ‚ .u „ƒ u “ƒ Bp ¤q (Ž u sq [t € r u ly Kˆ €
Bp sq Qy +… lˆ X– ‡† p € ‘} jv np Qw † :Ž € q :ˆ 8z q lˆ F} Qy B† Qw r s€ Br ’q [t € Œz ’q ly € r jv Ó Qy Qw ‹Š q VŽ (æ ™— ™È ¢Ö „ƒ € Br Br sq “ƒ Ó
‡† lw s€ nr :… sq z Hƒ Qy Qw q Br I† [t u Hƒ Bp Qw Br q ”
™È nr (æ ™— ™È ×Ö lˆ sq 8z ‹Š q Ãz n£ Qw † np ly € žv jv Qw r Ëv ‡† :} Œz Br q Վ s€ ‚ º‚ lˆ Ãp € :} ly ¤Ž r € I† p u ‹Š Vq u Br Ÿ
Ž Qw ‚ ‚ Qw “ƒ F} Qy † xŸ Qw r lˆ q Œz ‹Š Qw “ƒ Qw r Ëv ‹ñ Xò »ò lˆ q u 8z Hƒ Bp q :ˆ F… q z lˆ sq ‰ƒ s€ r Ž X– ž~ F} B† Qw B‚ (• :æ ™š lw (ˆ Qw nr ‘} lˆ q
‡† Bp ’q „ƒ € lˆ Æ € B‚ „ƒ € Br Br sq “ƒ ‡† lw € r lˆ sq ‡† :} … u r VŽ ~ Qw r Ž Qw r Ëv lw :ˆ Qy Qw ž sq Qy xŸ 8† |€ 8‚ Hu z € F} ‡† œ£ sq lw jv p
‡† Bp Vq lˆ q u 8z Hƒ np ly € Xu (Ž ” ýÈ ly u z jv ’q ‘… € s€ (y s€ B‚ “ƒ Qy Qw q Br Œ† :ˆ n£ Qw Qy :y Hu ly Kˆ |€ 8z q lˆ F} Qy B† Qw nr [t u Br Ÿ
Bp F} r Ž 8z q :Ž +ˆ € B‚ „ƒ € Br Br sq “ƒ ‡† lw € r :ˆ ~ q Qw r Ëv Bp sq ly Վ s€ :… sq Br ‹– Kˆ ’€ ‡† Bp Vq lˆ q Œz ‹Š q z u r VŽ Qw Œ† ˆ
lˆ F} F… ‘… € 8z ‡† Qw r xv s€ F… q {z u ‡† Qw r xv lˆ (Ÿ lˆ † sq Æt ht +} lˆ I† ž~ |q ‰ƒ s€ Br ‚ lw jv F} 8z q VŽ Œ† V€ lˆ F} :… ‘… s€ 8z Æ u
lˆ F} ‚ ‚ ¬w Hƒ Qw q Br I† Br :} ht ~ q z s€ º‚ s€ :… sq nr ¡‚ Qw Qy q Kˆ ”
:æ ™— ™È ×Ö lˆ q Œz ‹Š q z :ˆ „ƒ Hu nr ~ ’q „ƒ € Ir ¡‚ lw v :} Œz q ¤Ž Œ† ’€ 8z sq F… Qy Qw ‰ƒ u ‡† Vq :Ž u Œ† Ïu ‚ z €  t .u [t Xu lˆ ‡† q z
lˆ sq 8z ‹Š sq 8z ‹– Kˆ |€ † Bp |q 8z q Xu Ž 8Ó € Ir Qy ¾Ÿ X› F} q Œz xŸ ly € Xu ¤Ž ‰ƒ u nr ~ Vq lˆ F… 8z q Xu Վ u Hƒ {z € Kˆ +ˆ Xu (ˆ [t u Br Ÿ
[t u Hƒ Bp Qw Br q +ˆ Xu :ˆ Br sq “ƒ q Kˆ Kˆ u 8z ǟ ” ±Î F… q z u † lw s€ r Eˆ M Qy Qw ž ’q ‘… Xu Kˆ lˆ £ € z VŽ Hƒ p u r jv Qw r 'v ‰ ‡† p u †
Œz q lˆ F} Qy I† Qw nr “ƒ Ãp Hu Ãr jv q :ˆ Œ† ’€ ‡† Bp ¤q (Ž u Œ† u (~ „u ҈ Vq jv sq B† Œz q ‚ sq 8z Œz q ¤Ž Ç~ u Hƒ x Œ† ’€ ‡† Bp |q [t Xu lˆ † sq z
lˆ sq 8z ‹Š sq {z ” (• Ip ’q 8‚ € Œz [t u † s€ ‚ p q ‡† ƒ p ly (Ž u ‘… ” ‰ƒ s€ Br ‚ lˆ :} F… ‘… € Œz 8† :ˆ ht F} Qy ‡† Qw :… Qy ¤q lˆ q Œz ‹Š q z :ˆ ¬w r
†‡pBq|‚8€z8t€s‚u߈l…‘uƒHqÓ8ˆlqs…+uzu†qŽVyQwlˆl†‡–‹urŽV†‡pBq¤ˆlqzŒŠ‹qzˆ+uz8q’†‡zŒwQqŽ¤wQrn†}Fz8r
}FrB†‡wQy(€srBqVurˆl£nqzˆ+€z†‡pBq’yQwlˆl†Iwlˆ:q̉pu}‘ˆl†qŽ(”
—™˜4š8›NœžŸ —¤!œœ`›N¥M ¦lš4œ`§ ¨›
£N¢U¥M© —¤!œœ`›N¥M4š1¤ªœ`«
 Z¡`›N¢)£N4š8¤!œ ¬ ›M˜8§t Z¡`›Nœ
­ ›N¢«M›
«M«Sš8¤!œ

à‘qŽ þ u†üX”JI.yl€vjwQr L L Iû'®

à‘qŽ þ u†üX”JI.yl€vwQr ñ ñ û
£nwQ†‡pnrˆlƒ‰Ž
I
¯

š2uth~Çu.ƒ„€srBrBqƒH†Mr€s† ñ ñ IŽ
Ö:—™(Ø 
I

š2uth~(u.ƒ‰€srBrBqsƒ“† î î L
£nwQ†pnrÈlƒ‰tŽ Mr€†
I
¯

Ö:—™(Ø 
š2uth~(u.ƒ‰€srBrBqsƒ“† ú ú ñ ò
¯
£nwQ†‡pnÖ:—™ØÉurŽVrˆÒƒ‰Ž
à‘qŽ þ u†üX” ú»yl€vwQr ú î
£nwQ†‡pnrˆlƒ‰Ž
} I
¯

®I•(£€V€s‚B†‡pBqˆlq’†‡zŒŸx†Œ€’z8qs†‡}:zŒrb°)°°)
‡ßqrB†‡zŒŸx‚z{€stƆpBq…Ýz€}F…¢†Œu~yQq
¯.Ö:yQ}‘ˆ+€rBq’ƒ„€rBrBqsƒ“†‡wl€srn…:qszƒHyQwQqrB†It[uƒ“pBwQrBq|‚8€
z ,)² 0¡¶
± £N²˜8›´³µ
¶2·P¸ ­ ˜8¤$£§"š4¹#¡E¤'« ›
§"²žº»¥M˜4š8›Nœž8«

„ ÷Y&_ÕkyG8ÚÕm¼e0Y&_¢m
 †Bwlˆ+›j}FwQ†q|…+€ˆKˆlwQ~žyQq|†8€|}+ˆlq’æ:—™È™Ö×uXˆ+uϘbq†‡£€z8V ¡rB‚8€zŒt[u†wl€srnšãqz8ŠžwQƒ“qs–
†‡p€s}+vpu†B†‡pBq|t[€thqrI†BwQ†Iwlˆ:r€s†›j}FwQ†‡qVurÄ§€}F†€s‚B†‡pBq’~(€ÌnurŽ¤wQrB†Œ€
…Fz€Ž}:ƒH†‡wl€r¦…:z€Ž}:ƒH†Œ”•(pBqzŒq’wlˆ:…‘€†‡qsrB†wluy‚8€szth}Fƒ“pvjzŒqu†‡qzˆlqƒH}:zŒwQ†‡Ÿ
†‡purnt[€ˆl†Ã€†‡pBqsz‚8€sz8t[ˆ+€‚B˜n šã–IurŽ¤£nwQ†‡pÍu.~wQ†€s‚B…Fy0urBrIwQrvËwQ†ˆlp€s}:ylŽ
…Fz€Š‹wlŽqVvž€€Ž¤…FqzŒ‚8€zŒt[uHrIƒ“q|†8€€”
¼ öSVa¥ShZ¥Sh_¾kbSnm
IX¾ ” ½2VX°Ã¯™°Œ²´Åµ“¶ « ° ® °)
S°H°
TR„šã†qs…FpBqrnÖ¢—ÝŸžqzŒ–„ÖFz{€ ½ qƒH†Bș†‡pBqru–
ÖFz{€sƒ“qsqŽwQrvžˆ+€‚B†‡pBq’Ê™šãç(˜b ¡ð owQrB†‡qz-INŽ
L
L»•(qsƒ“pBrIwQƒ‰uyؙ€rB‚qsz8qsrBƒ“q
£n£n£” thwQ†Œ” qŽ} p uH‚8ˆ p u†pIqruX” thwQ†Œ” qŽ} p uXˆl†8u‚‚ p …:z€ ½ qsƒ“† p pIqˆlwl€Ž:ŽqŠ‹Ó
p pBqˆlwl€Ž:”9Žwlˆl† p Ž:€ƒ p pBqˆlwl€Ž:” Ö:š
ú‹”$à‘ù؁úXû‹òXEü ¿&,A¿

‡Mµ 0WVžzÞµ
D²“n´ ,!‹ÀÂÁ¿ © “²Ã « °4À +ºµ
T ­ ,rzÞµ
U„À´Dµ ,
® )°
U°Xf´ 0¡°8–Xæ þ €s£uz{Ž:”Ho÷€sz8xwlˆ:}FrŽqsz£uŸx†Œ€’}:…‘Ž:u†q|†‡pBq’à‘ùžØ™Ð
pB†‡†‡…‘Ð pp £œ£n£” …‘uXŽyl” ƒ‰€st pÄ yQ}Fžqsp p zŒ‚ƒHúXûIòXü~wlˆK” †‡Ì‰†
û‹”$à‘ùžØ
ú LX
ú Ž»È™}:†‡pBqsrB†‡wQƒ‰u†‡wl€rbÔ[q†‡p€Ž(ˆ:‚8€szæ:—™È™Ö
}‹”$à‘ùžØúXúXúXú»šãwQth…FyQq’È™}:†‡pBqrI†wQƒ„u†‡wl€rurŽ¤šãqƒH}:zŒwQ†‡Ÿxæ+uHŸqz”
ñ‹”$à‘ùžØ
ú LXû‹ò.æ(wlvpB†£nqswlvjpB†I—™wQz8qsƒ“†Œ€sz8ŸxșƒHƒ“qˆKˆ:Ö:z€†Œ€ƒ„€y MŠ‹û Ð
ç:̉†‡qrˆlwl€srn‚8€z•:z{urˆl…‘€zŒ†Iæ.uŸžqszšãqƒH}Fz8wQ†‡Ÿ
îX”$à‘ùžØúXúXñ I.æ(wlvpB†‡£œqswlvjpB†I—™wQzŒqƒH†8€sz8ŸVȱƒHƒ“qˆKˆ:Ö:z€†Œ€ƒ„€sžy MŠžû 
gf Y[Ú×Zk Snm
α…FqrBæ:—™È™Ö
±Î F… q Br 㚠㚠æ
www.openldap.org

Ø žŸ Œz +} :ˆ ¥š ™È 㚠æ
www.openssl.org

ä:qzŒžqyQqŸx—™ä
asg.web.cmu.edu/cyrus/

n˜ 㚠™š (æ ™— ±È Ö
www.sleepycat.com

FÖ ±È  Ô :æ ™— ±È Ö www.padl.com/software.html
4Ô lw jv {z u ‡† lw € nr Œ† € € ly ˆ
…Å”
æ:—™È±ÖF}:†‡wQylˆ Kˆ €}FzŒƒ“qs‚8€z{vq” rBq† …Fz€ ½ qƒH†Œˆ p ylŽ:u…:}F†‡wQylˆ p
biot.com/gq/
p
•:pBwlˆ:…‘u…:qszurŽ £nn£ £”CˆlwQyQylˆ†IXˆl†8” ƒ„€” }F p …‘u…Fqzˆ p u‚wQrŽyluŸÇ” pB†‡thy
€s†‡pBqzˆ:~žŸ
șrŽzŒq£ ùžwQrŽyluHŸ
ÙÇÆ=Æ¢Sh_&eÉÈ m ld
Êt #G yÆ~ÌË kbY&_ba
# slapd.conf
#
# Log level is a bitfield. 768 provides
# reasonable activity logging
# Logging goes to syslog with facility code
# LOCAL4
loglevel 768
include /usr/local/etc/openldap/schema/core.schema
include /usr/local/etc/openldap/schema/cosine.schema
include /usr/local/etc/openldap/schema/inetorgperson.schema
include /usr/local/etc/openldap/schema/java.schema
include /usr/local/etc/openldap/schema/krb5-kdc.schema
include /usr/local/etc/openldap/schema/misc.schema
include /usr/local/etc/openldap/schema/nadf.schema
include /usr/local/etc/openldap/schema/nis.schema
include /usr/local/etc/openldap/schema/openldap.schema
include /usr/local/etc/openldap/schema/corba.schema
include /usr/local/etc/openldap/schema/samba.schema
pidfile /usr/local/var/slapd.pid
argsfile /usr/local/var/slapd.args
# How we want passwords stored
password-hash {SSHA}
# Define SSL and TLS properties (optional)
TLSCertificateFile /etc/openldap/keys/server.cert
TLSCertificateKeyFile /etc/openldap/keys/server.key
TLSCACertificateFile /etc/openldap/keys/ca.cert
# Define SASL properties (optional)
sasl-realm green
sasl-host brick.skills-1st.co.uk
sasl-secprops minssf=112
########################################################
# database definition
########################################################
database ldbm
suffix "dc=example,dc=org"
rootdn "cn=Manager,dc=example,dc=org"
# Cleartext passwords, especially for the rootdn, should
# be avoided
# See slappasswd(8) and slapd.conf(5) for details.
# Use of strong authentication is encouraged.
rootpw secret
# The database directory MUST exist prior to running slapd
# AND should only be accessible by the slapd/tools.
# Mode 700 is recommended.
directory /usr/local/var/openldap-ldbm
# Indices to maintain
index uid eq
index uidNumber eq
index gidNumber eq
index cn eq
index memberUid eq
index ipServicePort eq
# Access Control
# Users can change their own passwords
# Everyone can read everything except passwords
access to attrs=userPassword
by self write
by anonymous auth
by * none
access to *
by * read
###########################################################
# end of slapd.conf
###########################################################

Ù ¢hS ~_  Ée È ÎÍ œ gf ¾d c ¢Ï d nk [Y n_ Ba le ô
Ç=
Æ Æ

[global]
netbios name = vm15
workgroup = S2
encrypt passwords = Yes
preferred master = Yes
wins support = Yes
log level = 1
# Make this a PDC
domain logons = Yes
os level = 34
local master = yes
domain master = yes
# LDAP params
ldap admin dn = cn=manager,dc=example,dc=org
ldap server = brick.skills-1st.co.uk
ldap suffix = dc=example,dc=org
ldap ssl = start tls
# Required share on PDC
[netlogon]
comment = Domain logon service
path = /var/samba/netlogon
public = no
writeable = no
browsable = no
# Profile store for NT/2k
[profile]
path = /var/samba/profile
create mask = 0600
directory mask = 0700
nt acl support = no
read only = no
[homes]
guest ok = no
read only = no