RedHat/OpenLdap

01 Synoptic	02 Network	03 Openldap	04 PhpLdapAdmin
05 Selinux	06 GnomeShell	07 Troubleshoots	08 Backup
FreeRadius	DaloRadius	ADserver

2. Network.

2.1 Prerequisites.

VM Openldap is a clone of TemplateVM. See TemplateVM-Installation .
A freeradius server is required. See Freeradius-Installation.
A dns server is required. See Powerdns-Installation.

The status of selinux is 'permissive'.
vi /etc/crontab

@reboot root setenforce 0

2.2 Network configuration.

See Openldap sypnotic.

This procedure is based on this example.
Ip Openldap:               192.168.60.70
Gateway Openldap :  192.168.60.254
IP Freeradius:               192.168.50.41
Ip dns1 :                        192.168.90.41

Domain : ol26modk.com
Servers name:
openldap.ol26modk.com
freeradius.ol26modk.com
dns1.ol26modk.com

vi /etc/hostname

openldap

Au prompt vous aurez : <username>@openldap.

vi /etc/hosts

127.0.0.1   localhost localhost.localdomain localhost4 localhost4.localdomain4  
192.168.60.70  openldap.ol26modk.com  openldap

vi /etc/sysconfig/network

 # Created by anaconda  
# # Created by anaconda  
 networking=yes  
 HOSTNAME=openldap.ol26modk.com

Change Network.
Example:
IP: 192.168.60.70/24
Gateway: 192.168.60.254
Name Server: 192.168.90.41
Search domain: ol26modk.com
nmcli con mod eth0 ipv4.method "manual" ipv4.addresses 192.168.60.70/24
nmcli con mod eth0 ipv4.gateway 192.168.60.254
nmcli con mod eth0 ipv4.dns 192.168.90.41
nmcli con mod eth0 ipv4.dns-search ol26modk.com

Read the new network configuration.
more /etc/NetworkManager/system-connections/eth0.nmconnection

Apply the new network configuration.

ifconfig eth0 0.0.0.0
systemctl restart NetworkManager
ifconfig eth0

Update :

RedHat may ask you to make a new subscription.
subscription-manager register --username <username> --password <password> --auto-attach --force

dnf update

Uninstall msmtp if you are using a mail server.
dnf remove msmtp

2.3 Firewall.

Take over the rules of the TemplateVM firewall.
See Firewall Configuration.

2.3.1 Add the rules.

ufw allow LDAP  
ufw allow LDAPS  
ufw allow 'WWW Full'

ufw status verbose

Default: deny (incoming), deny (outgoing), disabled (routed)  
New profiles: skip  
  
To                         Action      From  
--                         ------      ----  
22                         ALLOW IN    192.168.1.0/29  
389/tcp (LDAP)             ALLOW IN    Anywhere  
636/tcp (LDAPS)            ALLOW IN    Anywhere  
80,443/tcp (WWW Full)      ALLOW IN    Anywhere  
  
80,443/tcp (WWW Full)      ALLOW OUT   Anywhere  
25/tcp (SMTP)              ALLOW OUT   Anywhere  
53 (DNS)                   ALLOW OUT   Anywhere  
67,68/udp (DHCP)           ALLOW OUT   Anywhere  
123/udp (NTP2)             ALLOW OUT   Anywhere  
465/tcp (SMTP SSL)         ALLOW OUT   Anywhere  
587/tcp (SMTP TLS)         ALLOW OUT   Anywhere  
993/tcp (IMAP SSL)         ALLOW OUT   Anywhere  
143/tcp (IMAP TLS)         ALLOW OUT   Anywhere

202Network - amagerard/Freeradius GitHub Wiki

RedHat/OpenLdap

2. Network.

2.1 Prerequisites.

2.2 Network configuration.

2.3 Firewall.

2.3.1 Add the rules.

⚠️ GitHub.com Fallback ⚠️

202Network - amagerard/Freeradius GitHub Wiki

RedHat/OpenLdap

2. Network.

2.1 Prerequisites.

2.2 Network configuration.

2.3 Firewall.

2.3.1 Add the rules.

⚠️ **GitHub.com Fallback** ⚠️

⚠️ GitHub.com Fallback ⚠️