[KLUG Members] DNS, BIND and LDAP? [DNS]

Andrew Thompson tempes at ameritech.net
Thu Aug 4 00:46:04 EDT 2005

Previous message: [KLUG Members] DNS, BIND and LDAP? [DNS]
Next message: [KLUG Members] KLUG Meeting Notes for August 2, 2005 Have Been Posted
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, 2005-08-03 at 21:41, Adam Tauno Williams wrote:
> > > > Okay, so I got LDAP running, managing logins, and now I was hoping to
> > > > have it handle DNS as well. I've noticed a few projects to support this,
> > > > in various stages of development, but nothing that really looks ready.
> > > > Has anyone here set up a network DNS on LDAP, and if so, how?
> > > If you have a recent SuSe your bind may already have LDAP support -
> > > littleboy:~ # rpm -q bind bind-9.3.0-2.1
> > > littleboy:~ # ldd /usr/sbin/named
> > >         libldap-2.2.so.7 => /usr/lib/libldap-2.2.so.7 (0x401af000)
> > >         liblber-2.2.so.7 => /usr/lib/liblber-2.2.so.7 (0x401e1000)
> > > So you just need to create bind zones in named.conf that look like -
> > > zone "mormail.com" IN {
> > >         type master;
> > >         database "ldap
> > > ldap://192.168.1.9/zoneName=mormail.com,ou=bindSDB,ou=SubSystems,o=Morrison%20Industries,c=US 172800";
> > >         allow-update { none; };
> > > - and load the required objects into the Dit at the specified location -
> > So, there isn't a tool to do this? It took some finding, but I saw where
> > YaST can create LDAP-based user and group records. I mean, I CAN create
> > the LDIF file manually, I guess, I but I sort of hoped someone had come
> > up with a tool to simplify this by now.
> 
> If you have the schema loaded then tools like GQ make creating the
> objects pretty easy.  And PHPLDAPAdmin has templates for various object
> types.  But there is no "wizard".

It's not so much a "wizard" I'm after as an interface... but I guess,
technically, that is a "wizard". Anyway, I think I've found my answer.
Quoting from a comment to http://www.palmcoder.net/index.php?p=192:

> FYI - There are a lot more differences between SLES9 and Suse Linux
> Professional, not just support. SLES9 heavily uses the OpenLDAP
> server, most of the YaST modules allow you to enable LDAP support for
> the underlying services. You cannot do this with Suse Linux
> Professional - for instance you cannot store DNS zones in LDAP with
> Suse Linux Professional (as a matter of fact YaST does not even allow
> you to enable DNS zone transfers on SLP).
> 
> ______________________________________________________________________
SO, essentially, there IS a YaST module that supports LDAP-based DNS,
but only in the Enterprise version. Oh, well. At least there's an
interface for the "traditional" BIND files. Guess I'll stick with that
for now.

-- 
Andrew Thompson <tempes at ameritech.net>
The Imagerie

Previous message: [KLUG Members] DNS, BIND and LDAP? [DNS]
Next message: [KLUG Members] KLUG Meeting Notes for August 2, 2005 Have Been Posted
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Members mailing list