Configuring Connections

Table of Contents Plain LDAP Connection LDAPS Connection LDAPI Connection See Also

Plain LDAP Connection

Plain LDAP connection is enabled by default in DS.

LDAPS Connection

To enable LDAPS in DS, see DS SSL.

To export DS signing certificate:

$ certutil -L -d /etc/dirsrv/slapd-pki-tomcat -n "DS Signing Certificate" -a > ds_signing.pem

To verify SSL connection:

$ dnf install mozldap-tools
$ /usr/lib64/mozldap/ldapsearch -Z -h `hostname` -p 636 -D 'cn=Directory Manager' -w Secret.123 \
 -P /etc/dirsrv/slapd-pki-tomcat -b "dc=example,dc=com" "objectclass=*"

See also RHCS Administration Guide: Configuring Secure Connections.

LDAPI Connection

To enable LDAPI in DS:

$ ldapmodify -h `hostname` -p 389 -D "cn=Directory Manager" -w Secret.123 -x
dn: cn=config
changetype: modify
replace: nsslapd-ldapilisten
nsslapd-ldapilisten: on

Then restart the DS:

$ systemctl restart dirsrv@pki-tomcat.service

The LDAPI is accessible via /var/run/slapd-pki-tomcat.socket.

$ ldapsearch -H ldapi://%2fvar%2frun%2fslapd-pki-tomcat.socket -x -D "cn=Directory Manager" -w Secret.123 -b "dc=example,dc=com"

See also RHCS Administration Guide: Enabling LDAPI.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Configuring Connections

Table of Contents

Plain LDAP Connection

LDAPS Connection

LDAPI Connection

See Also

Clone this wiki locally