18.3 Adding a User LDAP Server for a Linux-Based iFolder 2.1.2 or Later Server

This section describes how to add a user LDAP server to your iFolder 2.1.2 server for Enterprise Linux solutions. You can specify up to eight User LDAP servers for your iFolder system. All user LDAPs must be in the same Novell eDirectory tree.

  1. Copy the self-signed root certificate file (RootCert.der) from 

    /etc/opt/novell/ifolder/RootCert.der

    to the following location

    /opt/novell/ifolder/Server/LDAP/import/RootCert.der

  2. If you are not logged in, go to the iFolder Management Console, click Global Settings, enter your administrator username and password, then click login. For details, see Logging In to the iFolder Management Console.

    The iFolder Management Console opens to the Global Settings > General Information page, which shows the current LDAP settings for the iFolder server.

  3. Click Global Settings > User LDAPs.

    The User LDAPs page lists the existing LDAP servers you have identified to iFolder.

  4. Click Add.

    This opens the Add User LDAP page.

  5. Type the following information:

    • User LDAP Name: The LDAP server host name.

    • Host DNS or IP: The LDAP server’s DNS name such as ldap1.your-domain-name.com or IP address such as 192.168.1.1.

    • Port: The port to use for communications between the iFolder server and the LDAP server. For information, see Section 18.8, Using Clear Text or SSL Connections to the User LDAP Server

    • Login Username: The admin username for the LDAP server. This username must have write privileges for the LDAP server to support extending the schema and browsing contexts.

    • Context: The context you want iFolder to search to authenticate users for the iFolder server.

    • Login Password: The password for the Login Username.

  6. Click OK, or click Cancel to abandon the process.

  7. Add any additional search contexts for the new LDAP server, then click OK.

  8. Exit the iFolder Management Console.

  9. Modify the LdapHost directive in the httpd_ifolder_unix.conf file to point to the new LDAP server.

    1. Open the /etc/opt/novell/ifolder/httpd_ifolder_unix.conf file in a text editor.

    2. Replace the current setting of the LdapHost directive with the IP address or DNS name of the new LDAP server.

    3. Save the file.

  10. Restart iFolder.

    1. To stop the iFolder server gracefully, at the server console, enter

      /etc/init.d/novell-httpd stop

    2. To start the iFolder server, at the server console, enter

      etc/init.d/novell-httpd start

  11. To verify the new User LDAP server settings, if you are not logged in, go to the iFolder Management Console, click Global Settings, enter your administrator username and password, then click login. For details, see Logging In to the iFolder Management Console.

    The iFolder Management Console opens to the Global Settings > General Information page, which shows the current LDAP settings for the iFolder server.