Installation on Red Hat/CentOS

Organization

LemonLDAP::NG provides packages for Red Hat/Centos 6 and 7:

Get the packages

YUM repository

You can add this YUM repository to get recent packages:

vi /etc/yum.repos.d/lemonldap-ng.repo
[lemonldap-ng]
name=LemonLDAP::NG packages
baseurl=http://lemonldap-ng.org/rpm6/
enabled=1
gpgcheck=1
gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-OW2

Change the base URL for EL7 packages:

baseurl=http://lemonldap-ng.org/rpm7/

Run this to update packages cache:

yum update

You must also install the EPEL repository for non-core dependencies. See prerequisites and dependencies chapter for more.

Manual download

RPMs are available on the Download page.

Package GPG signature

The GPG key can be downloaded here: rpm-gpg-key-ow2

Install it to trust RPMs:

rpm --import rpm-gpg-key-ow2

Install packages

With YUM

If the packages are stored in a yum repository:

yum install lemonldap-ng
Transaction Summary
===================================================
Install      82 Package(s)
Upgrade       0 Package(s)
 
Total download size: 18 M
Is this ok [y/N]: y

You can also use yum on local RPMs file:

yum localinstall lemonldap-ng-* perl-Lemonldap-NG-*

With RPM

Before installing the packages, install all dependencies.

You have then to install all the downloaded packages:

rpm -Uvh lemonldap-ng-* perl-Lemonldap-NG-*

You can choose to install only one component by choosing the package lemonldap-ng-portal, lemonldap-ng-handler or lemonldap-ng-manager.

Install the package lemonldap-ng-conf on all server which contains one of those packages.

First configuration steps

Change default DNS domain

By default, DNS domain is example.com. You can change it quick with a sed command. For example, we change it to ow2.org:

sed -i 's/example\.com/ow2.org/g' /etc/lemonldap-ng/* /var/lib/lemonldap-ng/conf/lmConf-1 /var/lib/lemonldap-ng/test/index.pl

Apache virtual host

If LL::NG is the only software installed in Apache, the virtual host feature may not have already been activated.

To do it, uncomment the NameVirtualHost line in /etc/httpd/conf.d/z-lemonldap-ng-handler.conf:

NameVirtualHost *:80

Check Apache configuration and restart:

apachectl configtest
apachectl restart

Default virtual host

Apache on RedHat comes with a default virtual host:

<LocationMatch "^/+$">
Options -Indexes
ErrorDocument 403 /.noindex.html
</LocationMatch>

This conflicts with LemonLDAP::NG ErrorDocument configuration, so you need to comment this part of the vhost. If you have an apache fresh install, it can be a good idea to completely disable the welcome vhost.

Reload virtual host

To allow the manager to reload the configuration, register the reload virtual host name in the hosts of the server:

echo "127.0.0.1 reload.example.com" >> /etc/hosts

Adapt the reload virtual host name to the domain you configured.

Upgrade

If you upgraded LL::NG, check all upgrade notes.

DNS

Configure your DNS server to resolve names with your server IP.

For tests with example.com, launch the following :

cat /etc/lemonldap-ng/for_etc_hosts >> /etc/hosts

Follow the next steps

File location

Build your packages

If you need it, you can rebuild RPMs:

%_topdir /home/user/build
%dist .el6
%rhel 6
rpmbuild -ta SOURCES/lemonldap-ng-VERSION.tar.gz