摘要
2024-11-01 周五 杭州 暴雨
调查问卷: https://www.wjx.cn/vm/exIBFDM.aspx#
2024年转瞬即逝,可是生活还在继续,这里有一项关于人工智能和项目管理对于效能关系的调研问卷,AI 对工作的作用和影响。问卷不采集个人信息,在此感谢各位提供的帮助。
课程内容
OpenLDAP是轻型目录访问协议(Lightweight Directory Access Protocol,LDAP)
为了验证 OpenLDAP 快速接入系统的能力,并验证其功能,本文通过 docker 部署并验证其能力。
安装部署
- Ldap 服务端
docker run \-d \-p 389:389 \-p 636:636 \-v /usr/local/ldap:/usr/local/ldap \-v /data/openldap/ldap:/var/lib/ldap \-v /data/openldap/slapd.d:/etc/ldap/slapd.d \--env LDAP_ORGANISATION="Manager" \--env LDAP_DOMAIN="aces.com" \--env LDAP_ADMIN_PASSWORD="123456" \--name openldap \--hostname openldap-host\--network bridge \harbor.jianmucloud.com:30003/docker-repo/openldap
- Ldap 客户端
docker run \-p 10001:80 \--privileged \--name phpldapadmin \--env PHPLDAPADMIN_HTTPS=false \--env PHPLDAPADMIN_LDAP_HOSTS=192.168.200.101 \--detach harbor.jianmucloud.com:30003/docker-repo/phpldapadmin
- ldapadmin 桌面版
链接:https://pan.baidu.com/s/18PuhHmAsNu1PYWs6-gIaOQ
提取码:8888
访问应用
- Web 使用
Login DN:cn=admin,dc=aces,dc=com
Password:123456
- 桌面版使用
跳板堡垒机
version: '3.0'
services:jms_mysql:image: harbor.jianmucloud.com:30003/docker-repo/mariadb:10.6container_name: jms_mysqlrestart: alwaysenvironment:MARIADB_DATABASE: jumpserverMARIADB_ROOT_PASSWORD: devops666healthcheck:test: "mysql -h127.0.0.1 -uroot -pdevops666 -e 'SHOW DATABASES;'"interval: 10stimeout: 5sretries: 3volumes:- ./data-mysql:/var/lib/mysqlnetworks:- devopsnetworkjms_redis:image: harbor.jianmucloud.com:30003/docker-repo/redis:6.2container_name: jms_redisrestart: alwayscommand: redis-server --requirepass devops666environment:REDIS_PASSWORD: devops666healthcheck:test: "redis-cli -h 127.0.0.1 -a devops666 info Replication"interval: 10stimeout: 5sretries: 3volumes:- ./data-redis:/datanetworks:- devopsnetworkjms_server:container_name: jms_allrestart: alwaysimage: harbor.jianmucloud.com:30003/docker-repo/jms_all:v3.8.1volumes:- ./data-server/core/data:/opt/jumpserver/data # Core 持久化目录, 存储录像日志- ./data-server/koko/data:/opt/koko/data # Koko 持久化目录- ./data-server/lion/data:/opt/lion/data # Lion 持久化目录- ./data-server/magnus/data:/opt/magnus/data # Magnus 持久化目录- ./data-server/kael/data:/opt/kael/data # Kael 持久化目录- ./data-server/chen/data:/opt/chen/data # Chen 持久化目录- ./data-server/web/log:/var/log/nginx # Nginx 日志持久化目录privileged: trueenvironment:- SECRET_KEY=2FsdGVkX19mzMum9dqqphTCNpm9dqqphTCNpm9dqqphTCNpm9dqqphTCNpm9dqqphTCNpm9dqqphTCNpm9dqqphTCNpCPV- BOOTSTRAP_TOKEN=m9dqqphTCNpm9dqqphTCNpm9dqqphTCNp - LOG_LEVEL=ERROR- REDIS_HOST=jms_redis- REDIS_PORT=6379- REDIS_PASSWORD=devops666- DB_HOST=jms_mysql- DB_PORT=3306- DB_USER=root- DB_NAME=jumpserver- DB_PASSWORD=devops666- DOMAINS=jumpserver.devops.test.com,192.168.200.101:10081ports:- '10081:80'networks:- devopsnetworknetworks:devopsnetwork:external: true
- 网站访问
说明: 默认账户和密码,admin/admin,登陆后需要更改密码。
总结
至此,通过 LDAP 创建的用户信息已经导入到了系统中,可以基于 LDAP 导入的用户实现资源配置操作。
URL1: https://www.cnblogs.com/regit/p/17853032.html
URL2: https://blog.csdn.net/yhl18931306541/article/details/128253735
URL3: https://juejin.cn/post/7299357175444095027