Implementing LDAP on Linux

If you are wanting to set up a Linux system, with either PAM or Samba3 to authenticate to a Windows Active Directory Server (ADS), the following links should be useful. If you get errors or have really advanced configuration needs, you'll probably still need to search Google a couple of times.

General links about LDAP can be found on that page.


To modify an LDAP record

Try something like this. Create a file called modify.ldif:

dn:     uid=user_domain_told,ou=users,ispmanDomain=domain.tld,dc=domain,dc=tld
changetype: modify
replace: loginShell
loginShell: /bin/bash

Then run it, like this:

ldapmodify -x -D "cn=root,dc=domain,dc=tld" -W -f ./modify.ldif     

Linux docs

While searching for some performance tricks for OpenLDAP, I discovered this site:

Some very good HOWTOs in PDF format. The ones on LDAP and Linux Disk management seem to be of way higher quality then the typical docs at

Corrupt LDAP database?

If your database seems corrupt, all is not lost. First shut down slapd, then run:

db4.1_recover -h /var/lib/ldap

Back to Networking or Linux or Samba