LDAP support in urpmi

From Mandriva Community Wiki

(Redirected from Tools/urpmi/LDAP)
Jump to: navigation, search


How to use the support for urpmi configuration in ldap.

Contents


Motivation

In order to ease the management of a group of computers running Mandriva Linux, urpmi can fetch it's configuration from a central ldap server. This allows with some scripts ( not yet written ) to either use an auto update system, or to allow to upgrade computers based on the name or anything else.

Discussion and development

The code can be found in mandriva svn, at http://svn.mandriva.com/cgi-bin/viewvc.cgi/soft/rpm/urpmi/trunk/urpm/ldap.pm?view=markup

Primary list for discussing is cooker-server.

Seek "urpmi ldap" on the archives ( there is some problems for the moment, either on gmane and archives.mandrivalinux.com )

Configuration of the client

First, in order to use it, you need to use a version 10.2 or newer. The urpmi-ldap package can only be found on cooker for the moment, but you can take the file ldap.pm from svn and place it in /usr/lib/perl5/vendor_perl/5.8.6/urpm/ldap.pm

If you can, install the urpmi-ldap package.

The configuration file is the same as pam_ldap, everything is in /etc/ldap.conf. urpmi will use the regular option, but you can prefix the option with urpmi_ if you need something different. The current options are 'base', 'uri', 'filter', 'host', 'ssl', 'port', 'binddn', 'passwd', 'scope'. They have the same meaning as pam_ldap.

By defaut, urpmi will fetch entries that match "(objectClass=urpmiRepository)", with an anonymous bind, and a sub scope.

Urpmi will cache the result in /var/cache/urpmi/ldap, in order to cope with a possible network failure. Automated cleaning of the source is planned, and therefore, this will allows to use this on a disconnected laptop.

Configuration of the server

The current schema can be found in cvs. Please note that everything is still a bit experimental, as the oid show.

Future development

  • Support for round robin and multiple servers
  • Support for srv record
  • Support for dynamic configuration ( with variable expansion )
  • A gui or a web interface to generate ldif
  • Provides other scripts ( one to clean /var/lib/urpmi, one to install all rpms from a hdlist, something for auto installation )
Retrieved from "http://wiki.mandriva.com/en/LDAP_support_in_urpmi"
Personal tools
Fund the Mandriva Linux project