[KLUG Members] DNS, BIND and LDAP? [DNS]

Adam Tauno Williams awilliam at whitemice.org
Wed Aug 3 05:39:05 EDT 2005

Previous message: [KLUG Members] DNS, BIND and LDAP? [DHCP]
Next message: [KLUG Members] DNS, BIND and LDAP? [DNS]
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> Okay, so I got LDAP running, managing logins, and now I was hoping to
> have it handle DNS as well. I've noticed a few projects to support this,
> in various stages of development, but nothing that really looks ready.
> Has anyone here set up a network DNS on LDAP, and if so, how?

If you have a recent SuSe your bind may already have LDAP support -
littleboy:~ # rpm -q bind bind-9.3.0-2.1
littleboy:~ # ldd /usr/sbin/named
        libldap-2.2.so.7 => /usr/lib/libldap-2.2.so.7 (0x401af000)
        liblber-2.2.so.7 => /usr/lib/liblber-2.2.so.7 (0x401e1000)

So you just need to create bind zones in named.conf that look like -

zone "mormail.com" IN {
        type master;
        database "ldap
ldap://192.168.1.9/zoneName=mormail.com,ou=bindSDB,ou=SubSystems,o=Morrison%20Industries,c=US 172800";
        allow-update { none; };
};

- and load the required objects into the Dit at the specified location -

littleboy:~ # ldapsearch -H ldapi:/// -x
-b"zoneName=mormail.com,ou=bindSDB,ou=SubSystems,o=Morrison
Industries,c=US" objectclass=*
# extended LDIF
#
# LDAPv3
# base <zoneName=mormail.com,ou=bindSDB,ou=SubSystems,o=Morrison
Industries,c=US> with scope sub
# filter: objectclass=*
# requesting: ALL
#

# mormail.com, bindSDB, SubSystems, Morrison Industries, US
dn: zoneName=mormail.com,ou=bindSDB,ou=SubSystems,o=Morrison
Industries,c=US
objectClass: top
objectClass: dNSZone
zoneName: mormail.com
relativeDomainName: mormail.com

# @, mormail.com, bindSDB, SubSystems, Morrison Industries, US
dn:
relativeDomainName=@,zoneName=mormail.com,ou=bindSDB,ou=SubSystems,o=Morrison Industries,c=US
objectClass: top
objectClass: dNSZone
zoneName: mormail.com
relativeDomainName: @
dNSTTL: 999
dNSClass: IN
nSRecord: littleboy.morrison.iserv.net.
sOARecord: littleboy.morrison.iserv.net. adam.morrison.iserv.net.
2002030601 99 99 320 0 705900
cNAMERecord: throw.morrison.iserv.net.
mXRecord: 10 sardine.morrison.iserv.net.

# www, mormail.com, bindSDB, SubSystems, Morrison Industries, US
dn:
relativeDomainName=www,zoneName=mormail.com,ou=bindSDB,ou=SubSystems,o=Morrison Industries,c=US
objectClass: top
objectClass: dNSZone
zoneName: mormail.com
relativeDomainName: www
dNSTTL: 999
dNSClass: IN
aRecord: 206.114.45.108

# syncml, mormail.com, bindSDB, SubSystems, Morrison Industries, US
dn:
relativeDomainName=syncml,zoneName=mormail.com,ou=bindSDB,ou=SubSystems,o=Morrison Industries,c=US
objectClass: top
objectClass: dNSZone
zoneName: mormail.com
relativeDomainName: syncml
dNSTTL: 999
dNSClass: IN
cNAMERecord: www.mormail.com.

# throw, mormail.com, bindSDB, SubSystems, Morrison Industries, US
dn:
relativeDomainName=throw,zoneName=mormail.com,ou=bindSDB,ou=SubSystems,o=Morrison Industries,c=US
objectClass: top
objectClass: dNSZone
zoneName: mormail.com
relativeDomainName: throw
dNSTTL: 999
dNSClass: IN
cNAMERecord: throw.morrison.iserv.net.


-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://www.kalamazoolinux.org/pipermail/members/attachments/20050803/65677d88/attachment-0001.bin

Previous message: [KLUG Members] DNS, BIND and LDAP? [DHCP]
Next message: [KLUG Members] DNS, BIND and LDAP? [DNS]
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Members mailing list