This is part 4 (the last part) of my series on using Apache Directory Server (ApacheDS), an open source LDAP implementation. Parts 1–2 covered getting ApacheDS installed, as well as connecting the configuration application to it to make changes to the structure of the directory. In part 3, I walked through adding a new Organizational Unit from scratch to your LDAP tree. In this last part I’ll cover adding a new user, using an existing user object as a template.
ADD A NEW USER
If you have been following these tutorials in order, you should have an DIT tree with an OU called Employees under your DC entry. Right click on the Employees OU you just created and chose New -> New Entry from the menu that appears. You’ll be prompted to select : “Create entry from scratch” or “Use existing entry as a template”. Choose the option to Use an Existing entry as a template. Then click the BROWSE button on the right. A window titled Select DN will open. Toggle the arrows until you find the entry labeled “uid=admin”. Click it to highlight it, and then click the OK button at the bottom of the window.
The window will close, and you will be returned to the New Entry window. The result should look like this:
Click the NEXT button to continue. The window will update and show the available Object Classes on the left. There will be several already entered on the right. Click the tlsKeyInfo item on the right to select it, and click the REMOVE button. You should be left with these four items:
Click the NEXT button to continue.
In the Distinguished Name window, change the uid= to the name of your new object. In my case that would be “biadmin”. Now add one attribute: cn = “biadmin”. If the DN Preview is populated successfully click NEXT to advance to the next screen. On the Attributes page you’ll see an error message indicating that several attributes are not allowed or are not filled in with a valid entry.
Delete these values by highlighting them with a click and then clicking the red X that will appear at the top right:
- the second CN with a value of “system administrator”
Click OK when prompted to see if you are sure. Click the Value field next to SN and change the text to “bi administrator”. When completed, you should be left with the values below.Now we need to enter a user password. Double click the value field next to userPassword that currently says Empty Password and a Password Editor window will appear. Click the New Password tab to work with it. Enter a password for the user in the Enter New Password field, and then again in the Confirm New Password field.The password is stored with a HASH method, the default being “plaintext”. If you’d like to use a different Hash Method to encrypt your password, choose the option from the drop down list. You can check the box labeled Show new password details and the mask on the password fields will be replaced by the values you entered.
Click the OK button and the window will close and return you to the New Entry – Attributes window. Click OK again, and after a few seconds, your new user will be created!
This is the conclusion of my series on setting up Apache Directory Server.