. .

Openldap administration

Written by at February 15, 2012

Outline common openldap administration tasks, including reindexing, changing schema, etc., to make everyone have a quick reference.

  • Changing schema 
    > ldapadd -x -H ldap:/// -D "cn=Mangaer,cn=config" -W -f .ldif
 Enter LDAP Password: 
 adding new entry "cn=,cn=schema,cn=config"

    Schema will get change on the fly without restart the daemon.

  • Re-indexing 
    > ldapmodify -x -h xxx.xxx.xx -D 'cn=Manager,cn=config' -w fdsafsdfs
dn: olcDatabase={1}bdb,cn=config
changetype: modify
add: olcDbIndex: cn pres,eq,sub

    Shutdown the slapd and

    > slapindex -v -F /usr/local/openldap/etc/openldap/slapd.d
  • Control logging 
    > ldapmodify -h localhost -D 'cn=Manager,cn=config' -w newborn -x
dn: cn=config
changetype: modify
add: olcloglevel
olcloglevel: 256 128