- 论坛徽章:
- 0
|
最近有人问LDIF的那两个文件,我贴出来吧,04年搞得这个东西,时间太久了,其他的没有记下来的已经搞不清楚了。
BASE.LDIF
#Organization
dn: dc=test,dc=com
objectClass: dcObject
objectClass: organization
o: TEST Corporation
dc: test
description: test kerberos center
#krb5PrincipalName, krb5KeyVersionNumber, krb5MaxLife,
#krb5MaxRenew, krb5KDCFlags, krb5EncryptionType,
#krb5ValidStart, krb5ValidEnd, krb5PasswordEnd
#krb5Key, krb5PrincipalRealm, krb5RealmName
#krb5Principal, krb5KDCEntry, krb5Realm
#Kerberos Principals
dn: ou=KerberosPrincipals,dc=test,dc=com
objectClass: organizationalUnit
objectClass: top
ou: KerberosPrincipals
description: Kerberos principals
# People
dn: ou=people,dc=test,dc=com
objectClass: organizationalUnit
objectClass: top
ou: people
description: People in TEST
EXT.LDIF
dn: cn=frank,ou=people,dc=test,dc=com
objectClass: top
objectClass: person
#objectClass: inetOrgPerson
#objectClass: organizationalPerson
#objectClass: posixAccount
objectClass: krb5Principal
objectClass: krb5KDCEntry
krb5PrincipalName: frank@TEST.COM
krb5KeyVersionNumber: 1
krb5MaxLife: 86400
krb5MaxRenew: 604800
krb5KDCFlags: 126
cn: frank
sn: frank
givenName: frank
mail: frank@test.com
uid: frank
uidNumber: 500
gidNumber: 100
homeDirectory: /home/frank
loginShell: /bin/bash
BASE.LDIF是预定义kerberos的LDAP存储结构。
EXT.LDIF是定义用户结构,可以根据自己的情况预定义。 |
|