Ställa in EBOX

Before we can use our ebox server and connect other services to it we have to make som setup on the ebox to get it to work

IPTABLES

Make shoure that the iptables is off ore acceting connections on port 389 from the addres on where you what to put your service

    iptables -L

SLAPD

We have to make shoure that our ldao server is responding on all interfaces so that we can connect to it from an other server.

    sudo nano /etc/default/slapd

Should look like this

    SLAPD_SERVICES="ldap://0.0.0.0 ldapi://%2fvar%2frun%2fslapd%2fldapi/????x-mod=0$

Linux Loggin PAM

In order that our ubuntu user should be able to loggin later we must change the login skel to /bin/bash

    sudo nano /etc/ebox/80samba.conf

And chnage so that is looks like

    login_shell = /bin/bash

this will change the login skel for new user. But for old user you must run

    smbldap-userinfo matte

Dont change anything other then the login skel ore the user can break

LDAP Admin uppgifter

Somtimes when you connect other services to the ebox ldap you have to enter the ldap admin acount. And to get the admin account and password out do this.

get root

    sudo su

Get all of the ldap tree

    ldapsearch -x -b"dc=kalle,dc=se"

Search in the output for this entery

    # ebox, kalle.se
    dn: cn=ebox,dc=kalle,dc=se
    objectClass: organizationalRole
    objectClass: simpleSecurityObject
    description: eBox admin account
    cn: ebox

So my admin user is "cn=ebox,dc=kalle,dc=se"

No get the password

    less /etc/ldap.secret

And ther you have you admin account and password for the ldap server.

TEST

Test if you have connection to the ebox from an external server

    telnet ebox-ip 389

You should get

    Connected to localhost.
    Escape character is '^]'.

Time to get some services to the ebox server