LDAP related development at Carnegie Mellon ● OpenLDAP and SQL ● LDAP everywhere ● Cyrus SASL development.

Slides:

Advertisements

Similar presentations

Whether you like it or not! Importance increases significantly with SharePoint 2013 Pretty much every investment area relies on Profiles for core.

Advertisements

Database Architectures and the Web

Overview of Database Administrator (DBA) Tools

Oracle9i Database Administrator: Implementation and Administration 1 Chapter 2 Overview of Database Administrator (DBA) Tools.

Objectives In this session, you will learn to:

National Center for Supercomputing Applications Integrating MyProxy with Site Authentication Jim Basney Senior Research Scientist National Center for Supercomputing.

Active Directory: Final Solution to Enterprise System Integration

Toolbox Mirror -Overview Effective Distributed Learning.

1 CS 502: Computing Methods for Digital Libraries Lecture 22 Web browsers.

Server Upgrade From UW to Cyrus. What is an IMAP Server? Provides access to your mail messages stored on the mail server Requires authentication.

Software Frameworks for Acquisition and Control European PhD – 2009 Horácio Fernandes.

1 Lecture 13: Database Heterogeneity Debriefing Project Phase 2.

©Silberschatz, Korth and Sudarshan18.1Database System Concepts Centralized Systems Run on a single computer system and do not interact with other computer.

NFS. The Sun Network File System (NFS) An implementation and a specification of a software system for accessing remote files across LANs. The implementation.

Introduction Need: A dynamic, user controlled website Built in forums, security, and news support Work with existing OpenInsight application Seamless.

MDB Install Overview for Federated and Shared MDBs Revised June 19, 2006.

Authenticating REST/Mobile clients using LDAP and OERealm

Understanding Active Directory

Web Application Architecture: multi-tier (2-tier, 3-tier) & mvc

Advance Computer Programming Java Database Connectivity (JDBC) – In order to connect a Java application to a database, you need to use a JDBC driver. –

CAEL 5012 Rich Internet Applications. What you need For this part of the course you will need access to a server with PHP and MYSQL which will be supplied.

Ricerca Distribuita Semantica Protocolli opensource per la condivisione di risorse online.

Database System Concepts and Architecture Lecture # 3 22 June 2012 National University of Computer and Emerging Sciences.

Overview of SQL Server Alka Arora.

XP New Perspectives on Microsoft Office Access 2003 Tutorial 12 1 Microsoft Office Access 2003 Tutorial 12 – Managing and Securing a Database.

Introduction To OpenLDAP Directory Services. What is a Directory Service? A specialized database optimized for reading, browsing, and searching. No complicated.

MOODLE and Other Database Integration ผศ. ดร. เด่นพงษ์ สุดภักดี ผู้ช่วยอธิการบดีฝ่ายวิชาการ และ ผู้อำนวยการสำนักนวัตกรรมการเรียนการสอน มหาวิทยาลัยขอนแก่น.

Module 9: Active Directory Domain Services. Overview Describe new features in AD DS List manageability and reliability enhancements in AD DS.

M i SMob i S Mob i Store - Mobile i nternet File Storage Platform Chetna Kaur.

Chapter 1 Overview of Database Concepts Oracle 10g: SQL

COMP 410 & Sky.NET May 2 nd, What is COMP 410? Forming an independent company The customer The planning Learning teamwork.

A detailed look at the Microsoft Windows Infrastructure at UWE including Active Directory (AD), MIIS, Exchange, SMS, IIS, SQL Server, Terminal Services.

Irina Sourikova Brookhaven National Laboratory for the PHENIX collaboration Migrating PHENIX databases from object to relational model.

Extending OpenLDAP Luke Howard PADL Software Pty Ltd Copyright © 2003 PADL Software Pty Ltd. All rights reserved. PADL is a registered trademark of PADL.

Single Sign-on with Kerberos 1 Chris Eberle Ryan Thomas RC Johnson Kim-Lan Tran CS-591 Fall 2008.

File Processing Concepts – Field – combination of 1 or more characters that is the smallest unit of data to be accessed – Record – group of related fields.

Relational Databases Database Driven Applications Retrieving Data Changing Data Analysing Data What is a DBMS An application that holds the data manages.

Implementing LDAP Client/Server System for Directory Service By Maochun Sun Project Advisor: Dr. Chung-E Wang Department of Computer Science California.

LDAP: Introduction CNS 4650 Fall 2004 Rev. 2. LDAP History Simplify directory access protocol Front-end to X.500 Developed my UMich.

Grouper Training Developers and Architects Advanced Topics Chris Hyzer Internet2 University of Pennsylvania This work licensed under a Creative Commons.

Andrew S. Budarevsky Adaptive Application Data Management Overview.

Windows Role-Based Access Control Longhorn Update

Experiment Management System CSE 423 Aaron Kloc Jordan Harstad Robert Sorensen Robert Trevino Nicolas Tjioe Status Report Presentation Industry Mentor:

EGEE User Forum Data Management session Development of gLite Web Service Based Security Components for the ATLAS Metadata Interface Thomas Doherty GridPP.

February, TRANSCEND SHIRO-CAS INTEGRATION ANALYSIS.

Database authentication in CORAL and COOL Database authentication in CORAL and COOL Giacomo Govi Giacomo Govi CERN IT/PSS CERN IT/PSS On behalf of the.

A Quick Look At How Works Understanding the basics of how works can make life a lot easier for any user. Especially those who are interested.

Arizona SharePoint Professionals Group Thomas Baer Senior Consultant, Statêra

Basics of JDBC Session 14.

The basics of knowing the difference CLIENT VS. SERVER.

 Distributed Database Concepts  Parallel Vs Distributed Technology  Advantages  Additional Functions  Distribution Database Design  Data Fragmentation.

Introduction to AFS IMSA Intersession 2003 An Overview of AFS Brian Sebby, IMSA ’96 Copyright 2003 by Brian Sebby, Copies of these slides.

DDM Central Catalogs and Central Database Pedro Salgado.

1 CEG 2400 Fall 2012 Directory Services Directory Services eDirLDAP Active Directory.

Lab 301 Populating Template Data from a Third Party Data Source Justin Pava, Software Release Manager Andrew Schoonmaker, Software QA Engineer.

Interstage BPM v11.2 1Copyright © 2010 FUJITSU LIMITED INTERSTAGE BPM ARCHITECTURE BPMS.

CS 440 Database Management Systems Stored procedures & OR mapping 1.

Troubleshooting Laserfiche Systems

 Project Team: Suzana Vaserman David Fleish Moran Zafir Tzvika Stein  Academic adviser: Dr. Mayer Goldberg  Technical adviser: Mr. Guy Wiener.

Tanenbaum & Van Steen, Distributed Systems: Principles and Paradigms, 2e, (c) 2007 Prentice-Hall, Inc. All rights reserved DISTRIBUTED SYSTEMS.

16 Copyright © 2004, Oracle. All rights reserved. Testing the Migrated Oracle Database.

9 Copyright © 2004, Oracle. All rights reserved. Getting Started with Oracle Migration Workbench.

1 Directory Services  What is a Directory Service?  Directory Services model  Directory Services naming model  X.500 and LDAP  Implementations of.

LDAP Overview Kevin Moseley Server Team Manager Walgreen Co.

File System Implementation

Punching data to the authentication server

Conditions Data access using FroNTier Squid cache Server

Implementation and configuration of LDAP

אבטחת נתונים בסביבת SQL Data Security

Presentation transcript:

LDAP related development at Carnegie Mellon ● OpenLDAP and SQL ● LDAP everywhere ● Cyrus SASL development

LDAP and SQL ● Currently, metadir.andrew.cmu.edu is an OpenLDAP 2.0 with ldbm ● Slurpd replication is used to ~4 identical replicas ● No foreign key constraints, LDAP interface is “hard” for certain users ● Plus, we have an Oracle site license

LDAP and SQL (2) ● Problems with SQL backend – How to do replication if we want to write directly to the database – How to make the database schema good for LDAP but also usable for other access

LDAP everywhere ● Administrative applications need information from data stores ● How many access protocols should any one programmer need to use? ● Lots of applications have inherent lists of resources (users, mailboxes, machines, etc.) ● Privilege delegation/authorization – we want help desk people to be able to check quotas, but not modify them

LDAP everywhere ● PTS backend is an example we've implemented – Exports AFS users and groups, read-only – Hopefully will ease our group transition ● Where do we run the LDAP server? ● How tightly do we integrate the backend to the instrumented application?

Cyrus SASL development ● Bug fixes, bug fixes, bug fixes – DIGEST-MD5 DES fixed (finally!) ● SASL API standardization – Allow interactions in server API to support async programming models – Library/application interaction changes? – Move sasl_set_alloc() into callbacks?

Cyrus SASL auxprops ● SunONE (Chris Newman) fixes to code ● auxprop API not well understood – Server-side API for retrieving user attributes – Most popular is “userpassword”--cleartext password – More general so that expensive lookups can get everything a server might need ● Currently, the “sasldb” plugin is the only auxprop plugin we ship

An LDAP auxprop plugin? ● OpenLDAP ships with one possible auxprop implementation ● Lots of interest in an LDAP auxprop for things like Cyrus IMAP (get passwords, groups, etc.) ● Generic auxprop plugin that communicates to a separate process ● Process caches connections, handles uid/dn mapping

Cyrus SASL ● I'll take any questions ●... compliments ●... complaints ●... abuse ●... whatever