LDAP2DNS(1) General Commands Manual LDAP2DNS(1)NAME
ldap2dns - LDAP based DNS management system
SYNOPSIS
ldap2dns[d] [-D binddn] [-b searchbase] [-o data|db] [-h host] [-p port] [-w password] [-L[filename]] [-u numsecs] [-v[v]] [-V]
DESCRIPTION
This manual page documents briefly the ldap2dns commands. This manual page was written for the Debian GNU/Linux distribution because the
original program does not have a manual page yet.
ldap2dns is an efficient, administration friendly way to maintain DNS information and distribute DNS records to multiple primary DNS
servers running djbdns or BIND
OPTIONS
A summary of commanline options is included below.
-D binddn
Use the distinguished name binddn to bind to the LDAP directory.
-w bindpasswd
Use bindpasswd as the password for simple authentication.
-b Use searchbase as the starting point for the search instead of the default.
-o data
Generate a "data" file to be processed by tinydns-data
-o db For each zone generate a "<zonename>.db" file to be used by named
-L[filename]
Print output in LDIF format for reimport.
-h host
Hostname of LDAP server, defaults to localhost.
-p port
Portnumber to connect to LDAP server, defaults to 389
-u numsecs
Update DNS data after numsecs. Defaults to 59 if started as daemon.
Important notice: data.cdb is rewritten only after DNSserial in DNSzone is increased.
-e exec-cmd
This command is executed after ldap2dns regenerated its data files.
-v Run in verbose mode.
-vv Run in even more verbose mode.
-V Print version and exit.
ENVIRONMENT
LDAP2DNS_UPDATE The LDAP2DNS_UPDATE environment variable sets the time interval in seconds to update DNS data. This variable is overridden
by -u option.
LDAP2DNS_OUTPUT Specify the type of output. It may be set to 'data' so that its output may be used by tinydns. It may be set to 'db' so
that its output may be used by
TINYDNSDIR The root-directory used by tinydns, ie. the one in which to tinydns expects its 'data'-file.
FILES
/etc/openldap/ldap.conf
Options specified here fulfil the same purpose as for other ldap-tools.
SEE ALSO ldap.conf(5), ldapsearch(1), tinydns, named.conf(5).
Please visit the project homepage for more detail: [http://ldap2dns.tiscover.com/]
AUTHOR
This manual page was written by Johann Botha <joe@blio.net>, for the Debian GNU/Linux system and is distributed under the GPL version 2 or
later.
Jacob Rief <jacob.rief@tiscover.com> is the original author of this program.
May 22, 2001 LDAP2DNS(1)
Check Out this Related Man Page
Authen::Simple::LDAP(3pm) User Contributed Perl Documentation Authen::Simple::LDAP(3pm)NAME
Authen::Simple::LDAP - Simple LDAP authentication
SYNOPSIS
use Authen::Simple::LDAP;
my $ldap = Authen::Simple::LDAP->new(
host => 'ldap.company.com',
basedn => 'ou=People,dc=company,dc=net'
);
if ( $ldap->authenticate( $username, $password ) ) {
# successfull authentication
}
# or as a mod_perl Authen handler
PerlModule Authen::Simple::Apache
PerlModule Authen::Simple::LDAP
PerlSetVar AuthenSimpleLDAP_host "ldap.company.com"
PerlSetVar AuthenSimpleLDAP_basedn "ou=People,dc=company,dc=net"
<Location /protected>
PerlAuthenHandler Authen::Simple::LDAP
AuthType Basic
AuthName "Protected Area"
Require valid-user
</Location>
DESCRIPTION
Authenticate against a LDAP service.
METHODS
o new
This method takes a hash of parameters. The following options are valid:
o host
Connection host, can be a hostname, IP number or a URI. Defaults to "localhost".
host => ldap.company.com
host => 10.0.0.1
host => ldap://ldap.company.com:389
host => ldaps://ldap.company.com
o port
Connection port, default to 389. May be overridden by host if host is a URI.
port => 389
o timeout
Connection timeout, defaults to 60.
timeout => 60
o version
The LDAP version to use, defaults to 3.
version => 3
o binddn
The distinguished name to bind to the server with, defaults to bind anonymously.
binddn => 'uid=proxy,cn=users,dc=company,dc=com'
o bindpw
The credentials to bind with.
bindpw => 'secret'
o basedn
The distinguished name of the search base.
basedn => 'cn=users,dc=company,dc=com'
o filter
LDAP filter to use in search, defaults to "(uid=%s)".
filter => '(uid=%s)'
o scope
The search scope, can be "base", "one" or "sub", defaults to "sub".
filter => 'sub'
o log
Any object that supports "debug", "info", "error" and "warn".
log => Log::Log4perl->get_logger('Authen::Simple::LDAP')
o authenticate( $username, $password )
Returns true on success and false on failure.
EXAMPLE USAGE
Apple Open Directory
my $ldap = Authen::Simple::LDAP->new(
host => 'od.company.com',
basedn => 'cn=users,dc=company,dc=com',
filter => '(&(objectClass=inetOrgPerson)(objectClass=posixAccount)(uid=%s))'
);
Microsoft Active Directory
my $ldap = Authen::Simple::LDAP->new(
host => 'ad.company.com',
binddn => 'proxyuser@company.com',
bindpw => 'secret',
basedn => 'cn=users,dc=company,dc=com',
filter => '(&(objectClass=organizationalPerson)(objectClass=user)(sAMAccountName=%s))'
);
Active Directory by default does not allow anonymous binds. It's recommended that a proxy user is used that has sufficient rights to search
the desired tree and attributes.
SEE ALSO
Authen::Simple::ActiveDirectory.
Authen::Simple.
Net::LDAP.
AUTHOR
Christian Hansen "chansen@cpan.org"
COPYRIGHT
This program is free software, you can redistribute it and/or modify it under the same terms as Perl itself.
perl v5.14.2 2012-04-23 Authen::Simple::LDAP(3pm)