389-ds intro and install

20 Jun

“The enterprise-class Open Source LDAP server for Linux. It is hardened by real-world use, is full-featured, supports multi-master replication, and already handles many of the largest LDAP deployments in the world. The 389 Directory Server can be downloaded for free and set up in less than an hour using the graphical console. ” a Quote from 389-ds site.

What is LDAP? LDAP(Lightweight Directory Access Protocol) is an application protocol for reading and editing directories over an IP network.

After trying some several products ldap, my choice finally fell to 389-ds. From my experience it’s easy to maintain and directory schema is so flexible. In this post i just show you about the introduction and how to install it.

Some of 389-ds Key Features

  • Multi-Master Replication, to provide fault tolerance and high write performance
  • Scalability: thousands of operations per second, tens of thousands of concurrent users, tens of millions of entries, hundreds of gigabytes of data
  • The codebase has been developed and deployed continuously by the same team for more than a decade
  • Extensive documentation, including helpful Installation and Deployment guides
  • Active Directory user and group synchronization
  • Secure authentication and transport (SSLv3, TLSv1, and SASL)
  • Support for LDAPv3
  • On-line, zero downtime, LDAP-based update of schema, configuration, management and in-tree Access Control Information (ACIs)
  • Graphical console for all facets of user, group, and server management

How to install 389-ds in Fedora 11. (Same step in Fedora 12 or above)

Log in as root

Type this command to download and install via yum

yum install 389-ds

After install complete, do setup


Fill the following question given

  • License agreement
  • Choose setup type: 1.express 2.typical 3.custom (i choose no.2)
  • Computer name:
  • System user:
  • System group:
  • Do you want to register with an existing configuration: [no]
  • Administrator ID [admin]:
  • Password:
  • Password (confirm):
  • Administration Domain:
  • Directory Server Network Port: [default port is 389]
  • Directory server identifier: [identified name]
  • Suffix: [ex: dc=yourcompany,dc=local]
  • Directory Manager DN: [cn=Directory Manager]
  • Password:
  • Password (confirm):
  • Administration port: [default port is 9830]

Configuration complete!

To start 389-ds service

/etc/init.d/dirsrv start

To start 389-ds admin management console service

/etc/init.d/dirsrv-admin start

Let’s have a look on ldap browser and 389-console(for admin) login pages

eclipse ldap browser


Next, i wanna post some of my configuration.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

%d bloggers like this: