1999-10-01 00:57:45 +08:00
|
|
|
# $OpenLDAP$
|
2000-07-23 02:59:40 +08:00
|
|
|
# Copyright 1999-2000, The OpenLDAP Foundation, All Rights Reserved.
|
1999-04-24 07:41:45 +08:00
|
|
|
# COPYING RESTRICTIONS APPLY, see COPYRIGHT.
|
2000-08-09 13:20:00 +08:00
|
|
|
H1: Building and Installing OpenLDAP Software
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2000-08-09 13:20:00 +08:00
|
|
|
This chapter details how to build and install the OpenLDAP Software
|
|
|
|
package including {{slapd}}(8), the stand-alone LDAP daemon and
|
|
|
|
{{slurpd}}(8), the stand-alone update replication daemon.
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2000-08-09 12:28:44 +08:00
|
|
|
Building and installing OpenLDAP requires several steps: installing
|
|
|
|
prerequisite software, configuring OpenLDAP itself, making, and finally
|
|
|
|
installing. The following sections describe this process in detail.
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2000-08-09 12:28:44 +08:00
|
|
|
In case you haven't already obtained OpenLDAP it is available at the following
|
|
|
|
location: {{URL: ftp://ftp.openldap.org/pub/OpenLDAP/openldap-release.tgz}}
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2000-08-09 12:28:44 +08:00
|
|
|
The OpenLDAP Project also maintains an extensive site on the World Wide Web.
|
|
|
|
The site contains the latest OpenLDAP news, release announcements, and
|
2000-08-09 13:20:00 +08:00
|
|
|
pointers to many other resources. You can access the site at:
|
|
|
|
{{URL: http://www.OpenLDAP.org/}}
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2000-08-09 12:28:44 +08:00
|
|
|
H2: Prerequisite software
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2000-08-09 13:20:00 +08:00
|
|
|
OpenLDAP relies a number of software packages distributed by third
|
|
|
|
parties. Depending on the features you intend to use, you may have
|
|
|
|
to download and install a number of additional software packages.
|
|
|
|
This section details commonly needed third party software packages
|
|
|
|
you might have to install. Note that some of these third party
|
|
|
|
packages may depend on additional software packages. Install each
|
|
|
|
package per installation instructions provided with it.
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2000-08-09 13:20:00 +08:00
|
|
|
H3: TLS Software
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2000-08-09 13:20:00 +08:00
|
|
|
OpenLDAP clients and servers require installation of OpenSSL TLS
|
|
|
|
libraries to provide {{TERM[expand]TLS}} services. Though
|
|
|
|
some operating systems may provide these libraries as part of the
|
|
|
|
base system or as an optional software component, OpenSSL often
|
|
|
|
requires separate installation.
|
|
|
|
|
|
|
|
OpenSSL is available from {{URL: http://www.openssl.org/}}.
|
|
|
|
|
|
|
|
OpenLDAP will not be fully LDAPv3 compliant unless OpenLDAP's
|
|
|
|
configure detects a usable OpenSSL installation.
|
|
|
|
|
|
|
|
H3: Kerberos Software
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2000-08-09 13:20:00 +08:00
|
|
|
OpenLDAP clients and servers support Kerberos based authentication
|
|
|
|
services. In particular, OpenLDAP supports SASL/GSSAPI based
|
|
|
|
authentication using either Heimdal or MIT Kerberos V packages.
|
|
|
|
If you desire to use Kerberos based authentication, you should
|
|
|
|
install either Heimdal or MIT Kerberos V.
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2000-08-09 13:20:00 +08:00
|
|
|
Heimdal Kerberos is available from {{http://}}.
|
|
|
|
MIT Kerberos is available from {{http://}}.
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2000-08-09 13:20:00 +08:00
|
|
|
H3: SASL Software
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2000-08-09 13:20:00 +08:00
|
|
|
OpenLDAP clients and servers require installation of Cyrus SASL
|
|
|
|
libraries to provide {{TERM[expand]SASL}} services. Though
|
|
|
|
some operating sytems may provide this library as part of the
|
|
|
|
base system or as an optional software component, Cyrus SASL
|
|
|
|
often requires separate installation.
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2000-08-09 13:20:00 +08:00
|
|
|
Cyrus SASL is available from {{URL:: }}. Cyrus SASL will
|
|
|
|
make use of Kerberos libraries if preinstalled.
|
|
|
|
|
|
|
|
OpenLDAP will not be fully LDAPv3 compliant unless OpenLDAP's
|
|
|
|
configure detects a usable Cyrus SASL installation.
|
|
|
|
|
|
|
|
H3: Database software
|
|
|
|
|
|
|
|
OpenLDAP's {{slapd}}(8) primary database backend, {{TERM:LDBM}},
|
|
|
|
requires that a compatible database package for entry storage. LDBM
|
|
|
|
is compatible with Sleepycat Software's BerkeleyDB (recommended)
|
|
|
|
or the Free Software Foundation's GNU Database Manager (GDBM).
|
|
|
|
If neither of these packages are available at configure time,
|
|
|
|
you will not be able build slapd(8) with primary database backend.
|
|
|
|
|
|
|
|
Your operating system may provide one of these two packages in
|
|
|
|
in base system or as an optional software component. You may
|
|
|
|
need may need to obtain the software and install it yourself.
|
|
|
|
|
|
|
|
BerkeleyDB is available from Sleepycat's web site
|
|
|
|
{{URL: http://www.sleepycat.com/download.html}}. There are
|
|
|
|
several versions available. At the time of this writing,
|
|
|
|
version 3.1, the latest release, is recommended.
|
|
|
|
|
|
|
|
GDBM is available from GNU's ftp {{URL: ftp://ftp.gnu.org/pub/gnu/gdbm/}}
|
|
|
|
At the time of this writing, version 1.8 is the latest release.
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2000-08-09 12:28:44 +08:00
|
|
|
H2: Configuring OpenLDAP
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2000-08-09 13:20:00 +08:00
|
|
|
If you haven't already done so, extra the distribution for the
|
|
|
|
compressed archive file and change directory to the top of the
|
|
|
|
distribution:
|
|
|
|
|
2000-08-09 12:28:44 +08:00
|
|
|
.{{EX:gunzip -c openldap-VERSION.tgz | tar xf -}}
|
|
|
|
.{{EX:cd openldap-VERSION}}
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2000-08-09 13:20:00 +08:00
|
|
|
Replacing {{EX:VERSION}} with the appropriate version string.
|
|
|
|
|
|
|
|
Now you should probably run the {{EX:configure}} script with the
|
|
|
|
{{EX:--help}} option.
|
2000-08-09 12:28:44 +08:00
|
|
|
This will give you a list of options that you can change when building
|
|
|
|
OpenLDAP. Many of the features of OpenLDAP can be enabled or disabled
|
|
|
|
using this method. Please see the appendix for a more detailed list
|
|
|
|
of configure options, and their usage.
|
|
|
|
.{{EX:./configure --help}}
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2000-08-09 12:28:44 +08:00
|
|
|
The configure script will also look at certain environment variables
|
|
|
|
for certain settings. These environment variables are:
|
|
|
|
!block table
|
|
|
|
Variable Uses
|
|
|
|
CC Sets which C Compiler to use (cc,gcc)
|
|
|
|
CFLAGS What compiler flags to use
|
|
|
|
CPPFLAGS What C Preprocessor flags to use
|
|
|
|
LDFLAGS What flags to give the linker
|
|
|
|
LIBS What libraries to include
|
|
|
|
!endblock
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2000-08-09 12:28:44 +08:00
|
|
|
Now run the configure script with any desired configure options or
|
|
|
|
environment variables.
|
2000-08-09 13:20:00 +08:00
|
|
|
.{{EX: [[env] settings] ./configure [options] }}
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2000-08-09 12:28:44 +08:00
|
|
|
As an example, lets assume that we want a copy of OpenLDAP configured to use the
|
|
|
|
LDBM backend, and the shell backend. The LDBM backend is turned on by default, so we don't need to do anything special to enable it.
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2000-08-09 12:28:44 +08:00
|
|
|
Additionally, we've installed the BerkeleyDB database package.
|
|
|
|
Configure is smart enough to use BerkeleyDB automaticly if it can find it, but
|
|
|
|
BerkeleyDB is installed by default in a place configure won't look at
|
|
|
|
automaticly. BerkeleyDB is usually installed in /usr/local/BerkeleyDB.3.1
|
|
|
|
(assuming that version 3.1 is being used.)
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2000-08-09 12:28:44 +08:00
|
|
|
The following example shows how to run configure and specify where to
|
|
|
|
find BerkeleyDB and turn on the shell backend. The example should be
|
|
|
|
entered on a single line (it has been split onto seperate lines for clarity.)
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2000-08-09 12:28:44 +08:00
|
|
|
If you are using csh (or any shell with similar syntax, ie tcsh.)
|
|
|
|
.{{EX: env CPPFLAGS="-I/usr/local/BerkeleyDB.3.1/include" LDFLAGS="-L/usr/local/BerkeleyDB.3.1/lib" ./configure --enable-shell}}
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2000-08-09 12:28:44 +08:00
|
|
|
If you are using sh (or any shell with similar syntax, ie bash,ksh,etc.)
|
|
|
|
.{{EX: CPPFLAGS="-I/usr/local/BerkeleyDB.3.1/include" LDFLAGS="-L/usr/local/BerkeleyDB.3.1/lib" ./configure --enable-shell}}
|
1999-05-03 09:19:22 +08:00
|
|
|
|
2000-08-09 12:28:44 +08:00
|
|
|
For more information on backends see the chapter on configuration.
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2000-08-09 12:28:44 +08:00
|
|
|
The configure script will normally auto-detect appropriate settings.
|
|
|
|
If you have problems at this stage, consult any platform specific
|
|
|
|
hints and check your configure options if any.
|
1999-05-03 09:19:22 +08:00
|
|
|
|
2000-08-09 12:28:44 +08:00
|
|
|
H2: Building the Software
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2000-08-09 12:28:44 +08:00
|
|
|
Once you have run the configure script the last line of output should be:
|
|
|
|
.{{EX:Please "make depend" to build dependencies}}
|
1999-05-03 09:19:22 +08:00
|
|
|
|
2000-08-09 12:28:44 +08:00
|
|
|
If the last line of output does not match, configure has probably failed.
|
|
|
|
You should not proceed until configure completes sucessfuly.
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2000-08-09 12:28:44 +08:00
|
|
|
Now run make depend.
|
|
|
|
.{{EX: make depend}}
|
1999-05-03 09:19:22 +08:00
|
|
|
|
2000-08-09 12:28:44 +08:00
|
|
|
Now run make, this step will actually compile OpenLDAP.
|
|
|
|
.{{EX: make}}
|
1999-04-24 07:00:44 +08:00
|
|
|
|
|
|
|
You should examine the output of this command carefully to make sure
|
|
|
|
everything is built correctly. Note that this command builds the LDAP
|
|
|
|
libraries and associated clients as well as slapd and slurpd.
|
|
|
|
|
2000-08-09 12:28:44 +08:00
|
|
|
Note that the OpenLDAP distribution can support building for multiple
|
1999-04-24 07:00:44 +08:00
|
|
|
platforms from a single source tree. If you want to do this, consult the
|
|
|
|
{{EX: INSTALL}} file in the top level distribution directory.
|
|
|
|
|
|
|
|
H2: Installing the Software
|
|
|
|
|
|
|
|
Once the software has been properly configured and successfully
|
|
|
|
made, you are ready to install it. You will need to have write permission
|
2000-08-09 12:28:44 +08:00
|
|
|
to the installation directories you specified when you ran configure.
|
2000-08-09 13:20:00 +08:00
|
|
|
By default OpenLDAP is installed in {{F:/usr/local}}. If you changed this
|
2000-08-09 12:28:44 +08:00
|
|
|
setting with the --prefix configure option, it will be installed
|
|
|
|
in the location you provided.
|
|
|
|
|
|
|
|
Typically, the installation is done as root. From the top level OpenLDAP
|
1999-04-24 07:00:44 +08:00
|
|
|
source directory, type
|
|
|
|
|
2000-08-09 12:28:44 +08:00
|
|
|
.{{EX: make install}}
|
1999-04-24 07:00:44 +08:00
|
|
|
|
|
|
|
You should examine the output of this command carefully to make sure
|
2000-08-09 12:28:44 +08:00
|
|
|
everything is installed correctly. You will find the configuration files
|
2000-08-09 13:20:00 +08:00
|
|
|
for slapd in {{F:/usr/local/etc/openldap}} by default. See chapter 5 for more
|
2000-08-09 12:28:44 +08:00
|
|
|
information on the configuration files.
|
1999-04-24 07:00:44 +08:00
|
|
|
|
|
|
|
|