You can get openLDAP from It’s both free and open source, so licensing and deployment are non-issues with this software. As of this writing, the latest version for general use is 2.0.18. Once you’ve downloaded the archive, expand it into a directory like openldap-2.0.18/.


Installation is detailed in the INSTALL document included in the source distribution. Basically, you’ll need to execute these commands (output is not shown):

[localhost:~/openldap-2.0.17] bmclaugh% ./configure

[localhost:~/openldap-2.0.17] bmclaugh% make depend

[localhost:~/openldap-2.0.17] bmclaugh% make

[localhost:~/openldap-2.0.17] bmclaugh% make test

[localhost:~/openldap-2.0.17] bmclaugh% su root -c 'make install'

Note that this last step requires root access; this is typical for all installations of software like this (as well as the databases detailed in Appendix B). Once this is done, you should have a ready-to-run LDAP directory server.

You should then modify the slapd.conf file to use Forethought-specific names. This file is located in the root directory of your installation. Modify it to have this entry:

database ldbm 
suffix "dc=forethought,dc=com" 
rootdn "cn=Manager,dc=forethought,dc=com" 
rootpw secret

Object Class Hierarchy

You now need to create the Forethought-specific object classes and attributes. While iPlanet offers a GUI for these tasks, you will need to dive into LDIF and the openLDAP configuration file formats by hand. This is a little more complex, ...

Get Building Java Enterprise Applications now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.