Tools/urpmi/LDAP
From Mandriva
How to use the support for urpmi configuration in ldap.
Contents |
Motivation
In order to ease the management of a group of computers running Mandriva Linux, urpmi can fetch it's configuration from a central ldap server. This allows with some scripts ( not yet written ) to either use an auto update system, or to allow to upgrade computers based on the name or anything else.
Discussion and development
The code can be found in mandriva svn, at http://svn.mandriva.com/cgi-bin/viewvc.cgi/soft/rpm/urpmi/trunk/urpm/ldap.pm?view=markup
Primary list for discussing is cooker-server.
Seek "urpmi ldap" on the archives ( there is some problems for the moment, either on gmane and archives.mandrivalinux.com )
Configuration of the client
First, in order to use it, you need to use a version 10.2 or newer. The urpmi-ldap package can only be found on cooker for the moment, but you can take the file ldap.pm from svn and place it in /usr/lib/perl5/vendor_perl/5.8.6/urpm/ldap.pm
If you can, install the urpmi-ldap package.
The configuration file is the same as pam_ldap, everything is in /etc/ldap.conf. urpmi will use the regular option, but you can prefix the option with urpmi_ if you need something different. The current options are 'base', 'uri', 'filter', 'host', 'ssl', 'port', 'binddn', 'passwd', 'scope'. They have the same meaning as pam_ldap.
By defaut, urpmi will fetch entries that match "(objectClass=urpmiRepository)", with an anonymous bind, and a sub scope.
Urpmi will cache the result in /var/cache/urpmi/ldap, in order to cope with a possible network failure. Automated cleaning of the source is planned, and therefore, this will allows to use this on a disconnected laptop.
Configuration of the server
The current schema can be found in cvs. Please note that everything is still a bit experimental, as the oid show.
Future development
- Support for round robin and multiple servers
- Support for srv record
- Support for dynamic configuration ( with variable expansion )
- A gui or a web interface to generate ldif
- Provides other scripts ( one to clean /var/lib/urpmi, one to install all rpms from a hdlist, something for auto installation )
