diff --git a/lam/docs/manual-sources/howto.xml b/lam/docs/manual-sources/howto.xml index cf356a91..f5c5b2c3 100644 --- a/lam/docs/manual-sources/howto.xml +++ b/lam/docs/manual-sources/howto.xml @@ -66,7 +66,7 @@ - PHP5 (>= 5.2.4) + PHP5 (>= 5.4.26) @@ -80,16 +80,20 @@ - Firefox 3 + Firefox (max. 2 years old) - Internet Explorer 8 (compatibility + Chrome (max 2 years old) + + + + Internet Explorer 9 (compatibility mode turned off) - Opera 10 + Opera (max. 2 years old) @@ -112,68 +116,240 @@ Have fun! The LAM development team - - Architecture + + Big picture - There are basically two groups of users for LAM: +
+ Overview - - - LDAP administrators and support - staff: + LAM has two major areas: - These people administer LDAP entries like user accounts, groups, - ... - + + + admin interface to manage all sorts of different LDAP entries + (e.g. users/groups/hosts) + - - Users: + + self service (LAM Pro) where end users can edit their own + data + + - This includes all people who need to manage their own data - inside the LDAP directory. E.g. these people edit their contact - information with LAM self service (LAM Pro). - - + - - - - - - - + + + + + + + - Therefore, LAM is split into two separate parts, LAM for admins and - for users. LAM for admins allows to manage various types of LDAP entries - (e.g. users, groups, hosts, ...). It also contains tools like batch - upload, account profiles, LDAP schema viewer and an LDAP browser. LAM for - users focuses on end users. It provides a self service for the users to - edit their personal data (e.g. contact information). The LAM administrator - is able to specify what data may be changed by the users. The design is - also adaptable to your corporate design. + Configuration - LAM for admins/users is accessible via HTTP(S) by all major web - browsers (Firefox, IE, Opera, ...). + Configuration is done on multiple levels: - LAM runtime environment: + Global - LAM runs on PHP. Therefore, it is independant of CPU architecture - and operating system (OS). You can run LAM on any OS which supports - Apache, Nginx or other PHP compatible web servers. + Effective for all parts of LAM (e.g. logging and password + policy). - Home directory server: + Configured via LAM admin login -> LAM configuration -> Edit general settings. - You can manage user home directories and their quotas inside LAM. - The home directories may reside on the server where LAM is installed or - any remote server. The commands for home directory management are secured - by SSH. LAM will use the user name and password of the logged in LAM - administrator for authentication. + Server profile - LDAP directory: + All settings for an LDAP connection (e.g. server name, LDAP + suffixes, account types/modules to activate). There may be multiple for + one LDAP server (e.g. for multiple departments, different user groups, + ...). - LAM connects to your LDAP server via standard LDAP protocol. It also - supports encrypted connections with SSL and TLS. - + Configured via LAM admin login -> LAM configuration -> Edit server profile. + + Self service + + All settings for a self service interface (e.g. fields that can be + edited, password reset functionality, ...). + + Configured via LAM admin login -> LAM configuration -> Edit self service. + + Profiles + + Stores default values for new LDAP entries. + + PDF structures + + Defines the layout and list of data fields to include in PDF + export. +
+ +
+ Glossary + + Here you can find a list of common terms used in LAM. + + + Glossary + + + + + Term + + Description + + + + + + Account module + + Plugin for a specific account type (e.g. Unix plugin for + user type) + + + + Account type + + Type of an LDAP entry (e.g. user/group/host) + + + + + + + + + + Admin interface + + LAM webpages for admin user (e.g. to create new + users) + + + + PDF editor + + Manages PDF structures + + + + PDF export + + Exports an entry to PDF by using a PDF structure + + + + PDF structure + + Defines the layout and list of data fields to include in + PDF export + + + + Profile + + Template for creation of LDAP entries, contains default + values + + + + Profile editor + + Manages profiles for all account types + + + + Self Service + + LAM webpages for normal users where they can edit their + own data + + + + Self service profile + + Configuration for self service pages (multiple + configurations can exist) + + + + Tree view + + LDAP browser that allows to modify LDAP entries on + attribute/object class level + + + +
+
+ +
+ Architecture + + There are basically two groups of users for LAM: + + + + LDAP administrators and support + staff: + + These people administer LDAP entries like user accounts, + groups, ... + + + + Users: + + This includes all people who need to manage their own data + inside the LDAP directory. E.g. these people edit their contact + information with LAM self service (LAM Pro). + + + + + + + + + + + + Therefore, LAM is split into two separate parts, LAM for admins + and for users. LAM for admins allows to manage various types of LDAP + entries (e.g. users, groups, hosts, ...). It also contains tools like + batch upload, account profiles, LDAP schema viewer and an LDAP browser. + LAM for users focuses on end users. It provides a self service for the + users to edit their personal data (e.g. contact information). The LAM + administrator is able to specify what data may be changed by the users. + The design is also adaptable to your corporate design. + + LAM for admins/users is accessible via HTTP(S) by all major web + browsers (Firefox, IE, Opera, ...). + + LAM runtime environment: + + LAM runs on PHP. Therefore, it is independant of CPU architecture + and operating system (OS). You can run LAM on any OS which supports + Apache, Nginx or other PHP compatible web servers. + + Home directory server: + + You can manage user home directories and their quotas inside LAM. + The home directories may reside on the server where LAM is installed or + any remote server. The commands for home directory management are + secured by SSH. LAM will use the user name and password of the logged in + LAM administrator for authentication. + + LDAP directory: + + LAM connects to your LDAP server via standard LDAP protocol. It + also supports encrypted connections with SSL and TLS. +
+ Installation @@ -736,7 +912,7 @@ Have fun! Version specific upgrade instructions
- 4.5 -> 4.8 + 4.5 -> 5.0 No special actions needed.
@@ -1013,7 +1189,7 @@ Have fun! linkend="a_selfService">self service (LAM Pro). You should start with the general settings and then setup a server profile. -
+
General settings After selecting "Edit general settings" you will need to enter the @@ -1167,7 +1343,7 @@ Have fun!
-
+
Server profiles The server profiles store information about your LDAP server (e.g. @@ -9467,6 +9643,13 @@ OK (10 msec) cn=admin or cn=manager). + + + 389 server + + cp passwordSelfReset-389server.ldif /etc/dirsrv/slapd-pdxnpldap03/schema + service dirsrv restart + Samba 4 diff --git a/lam/docs/manual-sources/images/bigPicture1.png b/lam/docs/manual-sources/images/bigPicture1.png new file mode 100644 index 00000000..957ceec3 Binary files /dev/null and b/lam/docs/manual-sources/images/bigPicture1.png differ