These instructions refer to OpenLDAP. If you use another LDAP server, you are on your own.
The version of Aiakos currently shipping contains a sample dataset that we are using for a beta deployment. This may not be, and in fact probably isn't, what you want to use. You will need to decide what information you wish to collect on each user, and then you'll need to put together the appropriate registration forms. See the UI section of the documentation for more information.
include /etc/ldap/schema/aiakos.schema
index cn,sn,uid pres,eq,sub
index objectClass eq
index ou eq
index dc eq
index mail pres,eq,sub
access to attribute=userPassword dn.subtree="ou=aiakos,dc=example,dc=com"
by dn="" write
by dn="cn=.*,ou=aiakos,dc=example,dc=com" write
by anonymous auth
by self write
by * none
# allow the aiakos manager to modify aiakos entries
access to dn.subtree="ou=aiakos,dc=example,dc=com"
by dn="cn=.*,ou=aiakos,dc=example,dc=com" write
Replacing dc=example,dc=com with the root of your LDAP tree.
NOTE: you may need to put the first stanza, BEFORE your existing
userPassword access stanza. This is because they are checked in order, and
this one is more specific!
This is in the ldap subdirectory. Copy this to /etc/ldap/schema. You will need to change this to reflect your own requirements for data storage.
You need to create a few objects in the LDAP root to enable aiakos to function. This includes the root of all aiakos objects, and the overall aiakos administrator, used by the server tool.
Take the aiakos.ldif file from the ldap subdirectory, and edit it to reflect your own LDAP root. You can probably just do:
sed -e's/dc=example,dc=com/dc=yourroot,dc=com/g' < aiakos.ldif
To generate your import file. Then change the password of the manager user. Instructions are included in the file.
