Objects matching the expression 'LDAP'

• LDAPNodes By default, puppetmasterd looks for nodes in its normal manifests, but you can additionally or instead have it look in LDAP. This works especially well if you are already storing your host information in LDAP. I've only used OpenLDAP_ to do this, but it should work just as well with Fedora Directory Server_ or Sun's Directory Server_, although you'll have to translate the schema to work with them. This guide will go through what it takes to modify an existing OpenLDAP setup; please check OpenLDAP's documentation_ to get to that point. NOTE: You can use node entries in your manifests together with LDAP nodes. External or LDAP nodes will be used before node entries. You cannot however use LDAP nodes and external nodes together. You must use one of these two types. Why You'd Do This ----------------- There are multiple benefits to storing nodes in LDAP instead of using Puppet's built-in node support: - Other applications can easily get access to the same data - All attributes on the LDAP nodes are assigned as variables in the Puppet configuration, just like Facts, so you can easily configure attributes for individual classes - It is straightforward to allow other applications to modify this data to configure nodes (e.g., as part of a deployment process), which is easier to support than generating Puppet configurations Prerequisites --------------- * ruby-ldap_ Pre-Puppet Ruby/LDAP Validation --------------------------------- You can run the following tests to make sure that the Ruby-LDAP Library and your LDAP software are configured properly:: ruby -rldap -e 'puts :installed' If this returns installed then you can try:: ruby -rpuppet -e 'p Puppet.features.ldap?' These are basically doing the same thing, so they should either both succeed or both fail, and if they both succeed, then LDAP nodes should work. Node Attributes --------------- As mentioned, every attribute returned by LDAP nodes or parent nodes will be assigned as a variable in Puppet configurations during compilation. Attributes with multiple values will be created as arrays. As an example, take the following simple LDAP nodes:: dn: cn (LDAP, OpenLDAP, node, nodes)
• Recipes/LDAPClientNSSwitch LDAP Client NSSwitch recipe (LDAP, nsswitch, puppet, recipe)