LDAP Overview Kevin Moseley Server Team Manager Walgreen Co.

Slides:



Advertisements
Similar presentations
ECS and LDAP Karen Krivaa Product Marketing Manager.
Advertisements

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.
MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 7 Configuring File Services in Windows Server 2008.
LDAP LIGHT WEIGHT DIRECTORY ACCESS PROTOCOL PRESENTATION BY ALAKESH APURVA DHAN AND ASH.
Authenticating REST/Mobile clients using LDAP and OERealm
Presentation #36576 Presentation #36576 Oracle9i LDAP: Advanced Configuration of Directory Naming Daniel T. Liu Senior Technical consultant First American.
CIT 470: Advanced Network and System Administration
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 1: Introduction to Windows Server 2003.
A centralized system.  Active Directory is Microsoft's trademarked directory service, an integral part of the Windows architecture. Like other directory.
1 CSIT 320. Just as the combination of a database and a database management system collects and organizes information about an institution/company/… as.
Module 1: Installing Active Directory Domain Services
Directory services Unit objectives
11 REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS Chapter 1.
Chapter 4 Windows NT/2000 Overview. NT Concepts  Domains –A group of one or more NT machines that share an authentication database (SAM) –Single sign-on.
Module 12: Designing an AD LDS Implementation. AD LDS Usage AD LDS is most commonly used as a solution to the following requirements: Providing an LDAP-based.
K. Stoeckigt, E. Verharen, Secure real-time audio/video communication – H.350,
Introduction To OpenLDAP Directory Services. What is a Directory Service? A specialized database optimized for reading, browsing, and searching. No complicated.
Directory Server Campus Booster ID: Copyright © SUPINFO. All rights reserved OpenLDAP.
Bynari, Inc. Sharing made easy Doug Finch Director of Technical Support Bynari, Inc.
Building a KDC. Kerberos Implementations RedHat 5 comes with MIT Kerberos 1.6 Ubuntu LTS comes with MIT Kerberos Admin through CLI, but from.
LIGHT WEIGHT DIRECTORY ACCESS PROTOCOL Presented by Chaithra H.T.
SPARCS 10 이대근 (harry). Contents  Directory Service  What is LDAP?  Installation  Configuration  ldap-utils  User authentication with LDAP.
The Directory A distributed database Distributed maintenance.
Microsoft Active Directory(AD) A presentation by Robert, Jasmine, Val and Scott IMT546 December 11, 2004.
April 23,2001LDAP as replacement for NIS1 LDAP as a replacement for NIS Wolfgang Friebel DESY Zeuthen.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 1: Introduction to Windows Server 2003.
Active Directory Administration Lesson 5. Skills Matrix Technology SkillObjective DomainObjective # Creating Users, Computers, and Groups Automate creation.
Single Sign-on with Kerberos 1 Chris Eberle Ryan Thomas RC Johnson Kim-Lan Tran CS-591 Fall 2008.
TWSd - Security Workshop Part I of III T302 Tuesday, 4/20/2010 TWS Distributed & Mainframe User Education April 18-21, 2010  Carefree Resort  Carefree,
© Wiley Inc All Rights Reserved. MCSE: Windows Server 2003 Active Directory Planning, Implementation, and Maintenance Study Guide, Second Edition.
OracleAS 10G SSO: A “Fan-Out” Configuration Overview for Decentralized Implementation Presented By: Tony Macedo "This work was performed under the auspices.
Building Secure, Flexible and Scalable Environments using LDAP - SANS Orlando Sacha Faust PricewaterhouseCoopers
Active Directory. Computers in organizations Computers are linked together for communication and sharing of resources There is always a need to administer.
Implementing LDAP Client/Server System for Directory Service By Maochun Sun Project Advisor: Dr. Chung-E Wang Department of Computer Science California.
Module 11: Read-Only Domain Controllers. Overview Describe the Read-Only Domain Controllers role Use Read-Only Domain Controllers.
A Brief Documentation.  Provides basic information about connection, server, and client.
LDAP (Lightweight Directory Access Protocol ) Speaker: Chang-Yu Wu Adviser: Quincy Wu Date:2007/08/22.
 Identify Active Directory functions and Benefits.  Identify the major components that make up an Active Directory structure.  Identify how DNS relates.
Samba – Good Just Keeps Getting Better The new and not so new features available in Samba, and how they benefit your organization. Copyright 2002 © Dustin.
Module 1: Implementing Active Directory ® Domain Services.
1 Pertemuan #11 User Authentication dan Directory Services Kuliah Pengaman Jaringan.
AACLS Documentation LDAP and releasing information issue ACL and ACI AACLS Model Physical Architecture Logical Architecture Example : a French university.
Paulo Repa Lightweight Directory Access Protocol Paulo Repa
LDAP (Lightweight Directory Access Protocol)
Introduction to Active Directory
1 Chapter 13: RADIUS in Remote Access Designs Designs That Include RADIUS Essential RADIUS Design Concepts Data Protection in RADIUS Designs RADIUS Design.
Active Directory. Computers in organizations Computers are linked together for communication and sharing of resources There is always a need to administer.
EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks Information System Tutorial Laurence Field.
Directory Services CS5493/7493. Directory Services Directory services represent a technological breakthrough by integrating into a single management tool:
Active Directory Domain Services (AD DS). Identity and Access (IDA) – An IDA infrastructure should: Store information about users, groups, computers and.
Chapter 9 Lecture 4. NetWare Novell’s network operating system Biggest competitor – Microsoft Windows.
Lightweight Directory Access Protocol Objectives –This chapter will first show you how to install and use LDAP Contents –The LDAP Database Structure –Scenario.
1 Directory Services  What is a Directory Service?  Directory Services model  Directory Services naming model  X.500 and LDAP  Implementations of.
u Babel Com Australia FDS + Samba ● What is LDAP? ● Fedora Directory Server ● Samba ● LDAP Tools.
Migrating to LDAP What is LDAP? Fedora Directory Server LdapImport
Windows interoperability with Unix/Linux
CollegeSource Security Application &
CIT 470: Advanced Network and System Administration
Unix System Administration
CIT 470: Advanced Network and System Administration
Introduction to LDAP Frank A. Kuse.
Active Directory Administration
Objectives Differentiate between the different editions of Windows Server 2003 Explain Windows Server 2003 network models and server roles Identify concepts.
Implementation and configuration of LDAP
IIS.
CIT 470: Advanced Network and System Administration
ACTIVE DIRECTORY An Overview.. By Karan Oberoi.
Managing a Distributed Environment
LDAP LIGHT WEIGHT DIRECTORY ACCESS PROTOCOL
Presentation transcript:

LDAP Overview Kevin Moseley Server Team Manager Walgreen Co.

What is LDAP? ● LDAP (Lightweight Directory Access Protocol) is just that; a protocol. ● There are many implementations of LDAP including Sun iPlanet, RedHat Directory Server, and of course OpenLdap.

LDAP Overview ● Based on x.500 directory but has removed some of the more obscure features. ● Allows for full distinguished names. Allows for users to have same username since they are differentiated by context. ● Creates a central repository for user credentials and information. ● LDAP is optimized for reads.

LDAP Tree Example

LDAP Implementation ● Hardware requirements ● Depends on number of users. ● Fault tolerance requirements. ● Software requirements ● This presentation is based on OpenLdap. ● Any un*x based OS should be able to run OpenLdap. ● Most likely you will get a precompiled binary from your distribution vendor.

LDAP Terminology ● Schema: Is what defines the characteristics of an object. (i.e. A user schema is name, password, ) ● Some options are required where others are optional. ● Relative distinguished name: dn:cn=Joe user ● Fully distinguished name: dn:cn=Joe user,ou=users,dc=company,dc=com.

LDAP Utilities ● Ldapsearch: Used to query the LDAP database. ● Ldapadd: Used to add entries to the LDAP database. Linked to ldapmodify. ● Ldapmodify: Used to modify existing entries in an LDAP database. ● Ldapdelete: Used to remove entries from a ldap database. ● Ldapmodrdn: Used to modify the RDN of an object.

LDAP Utilities cont. ● Slapcat: used to concatenate an ldap database into a LDIF file. Useful in creating slave LDAP servers and backup. ● NSSswitch used to allow a machine query an ldap server for credentials. ● pam_ldap allows for pam authentication against an ldap server.

Configuring LDAP ● Most configuration will be made to the slapd.conf file. This is the configuration file for the slapd daemon. ● Also configuration for the replication daemon is performed here. The replication daemon is called slurpd. ● Things you want to configure are context, replication partners, database options.

Configuring LDAP cont. ● Slapd.conf is where you configure acl's for permissions on the directory. ● Also you configure the indexes for the database backend. ● Configure the number of cached objects in memory.

Example of slapd.conf

Adding users and objects ● Most additions can be made via a LDIF file. This file will allow for multiple additions to be made at one time. ● Nice because you can then script the addition of users or objects.

Replication overview

Verify LDAP is working ● Query the ldap server to verify it is responding to queries. ● Use ldapsearch -x -b “dc=company,dc=com” “(objectclass=*)”

Possible uses of LDAP ● Samba authentication. ● Machine authentication. ● VPN and Radius authentication. ● Phone and directory. ● Store sendmail configuration. ● Automount config. ● Store BIND zone files (with a patch) ● Interoperate with Active Directory.

More information.... ● LDAP System Administration by O'Reilly ● OpenLdap website: ● ●

Questions and answers

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.