LDAP: Introduction CNS 4650 Fall 2004 Rev. 2. LDAP History Simplify directory access protocol Front-end to X.500 Developed my UMich.

Slides:



Advertisements
Similar presentations
Directory Infrastructure Roadmap Overcoming Fragmented Identities - Roadmap to a Reliable Directory Infrastructure Thorsten Butschke & Dr. Martin Dehn.
Advertisements

How to Succeed with Active Directory Robert Williams, PhD CEO Secure Logistix Corporation.
Active Directory: Final Solution to Enterprise System Integration
Directory Services BICS 565. What is a Directory Service (DS)? A service that allows users to lookup information about entities in an organization Entities.
1 Pertemuan 13 Servers for E-Business Matakuliah: M0284/Teknologi & Infrastruktur E-Business Tahun: 2005 Versi: >
Directory & Naming Services CS-328 Dick Steflik. A Directory.
5/8/2006 pmarquez/Active Directory 1 Windows Server 2003 Active Directory CS526 Semester Project Spring 2006 Patricia C. Marquez Microsoft.
Henric Johnson1 Network Security /. 2 Outline Attacks, services and mechanisms Security attacks Security services Methods of Defense A model for Internetwork.
Systems Architecture, Fourth Edition1 Internet and Distributed Application Services Chapter 13.
StandardsDIS W4 RJK1 Distributed Information Systems Standards Bob Kummerfeld Department of Computer Science.
Windows 2000 Remote Access. Remote Access Overview With Windows 2000 remote access, remote access clients connect to remote access servers and are transparently.
Client/Server Computing. Information processing is distributed among several workstations and servers on a network, with each function being assigned.
A centralized system.  Active Directory is Microsoft's trademarked directory service, an integral part of the Windows architecture. Like other directory.
Winter Consolidated Server Deployment Guide for Hosted Messaging and Collaboration version 3.5 Philippe Maurent Principal Consultant Microsoft.
Windows ® Powered NAS. Agenda Windows Powered NAS Windows Powered NAS Key Technologies in Windows Powered NAS Key Technologies in Windows Powered NAS.
Module D Panko and Panko Business Data Networks and Security, 9 th Edition © 2013 Pearson Education, Inc. Publishing as Prentice Hall.
Session 6 Windows Platform Dina Alkhoudari. Learning Objectives What is Active Directory Logical components of active directory Physical components of.
Internet-Based Client Access
BOB Tech Demo 2003 G2E – Las Vegas. Agenda  Best of Breed – a layering of standards  Standards, messaging, protocols and why you care  From the bottom.
MCSE Guide to Microsoft Exchange Server 2003 Administration Chapter Four Configuring Outlook and Outlook Web Access.
Network Administration. What is a Systems Administrator?  Person responsible for:  Setting up servers  Configuring the environment for web and other.
23/4/2001LDAP Overview - HEPix - LAL 2001 LDAP Overview HEPix – LAL Apr Michel Jouvin
Introduction To OpenLDAP Directory Services. What is a Directory Service? A specialized database optimized for reading, browsing, and searching. No complicated.
LIGHT WEIGHT DIRECTORY ACCESS PROTOCOL Presented by Chaithra H.T.
Chapter 9: Novell NetWare
Module 2: Implementing DNS to Support Active Directory
MIGRATING FROM MICROSOFT EXCHANGE SERVER AND OTHER MAIL SYSTEMS Appendix B.
Microsoft Active Directory(AD) A presentation by Robert, Jasmine, Val and Scott IMT546 December 11, 2004.
Enabling Embedded Systems to access Internet Resources.
A detailed look at the Microsoft Windows Infrastructure at UWE including Active Directory (AD), MIIS, Exchange, SMS, IIS, SQL Server, Terminal Services.
Marwan Al-Namari Week 4. Physical Path Application Presentation Session Transport Network Data Link Physical Application Presentation Session Transport.
Directory Service
Building Secure, Flexible and Scalable Environments using LDAP - SANS Orlando Sacha Faust PricewaterhouseCoopers
Implementing LDAP Client/Server System for Directory Service By Maochun Sun Project Advisor: Dr. Chung-E Wang Department of Computer Science California.
1 Introduction to Microsoft Windows 2000 Windows 2000 Overview Windows 2000 Architecture Overview Windows 2000 Directory Services Overview Logging On to.
“Windows Networking” ITL. © Hans Kruse & Shawn Ostermann, Ohio University 2 Overview Networking under Windows Mixture of applications and protocols.
Introduction to Microsoft Windows 2000 Integrated support for client/server and peer-to-peer networks Increased reliability, availability, and scalability.
 Identify Active Directory functions and Benefits.  Identify the major components that make up an Active Directory structure.  Identify how DNS relates.
Calendaring and Scheduling (C & S) Branch Hendrix Sr. Principal Technology Specialist Central Region - US Microsoft Corporation.
DirXML & DSML 2 Shon Vella Software Engineer, Consultant
1 Pertemuan #11 User Authentication dan Directory Services Kuliah Pengaman Jaringan.
Directory Servers Purposes (From Chapter 6) –Help users find information –Centralize security (single login, etc.)
Microsoft Active Directory ITL. © 2005 Hans Kruse, Shawn Ostermann, Carl Bruggeman, Ohio University 2 Early Networking Schemes Windows LAN Manager, AppleTalk.
CS1001 Lecture 7. Overview Computer Networks Computer Networks The Internet The Internet Internet Services Internet Services Markup Languages Markup Languages.
Simple Object Access Protocol
Integrating Active Directory with eDirectory ™ Using Novell Account Manager Reid Oakes Technical Team Manager Novell, Inc.
OVERVIEW OF ACTIVE DIRECTORY
1 Active Directory Service in Windows 2000 Li Yang SID: November 2000.
Active Directory CNS 4650 Fall 2004 Rev. 2. Active Directory Introduced with Windows 2000 Server X.500 based Can emulate NT-style network environments.
Hussain Ali Department of Computer Engineering KFUPM, Dhahran, Saudi Arabia Active Directory.
Introduction to Directory Services CNS 4650 Fall 2004 Rev. 2.
EGEE is a project funded by the European Union under contract IST Introduction to Web Services 3 – 4 June
CEG 2400 Fall 2012 Directory Services Active Directory Tree Domain.
Directory Services CS5493/7493. Directory Services Directory services represent a technological breakthrough by integrating into a single management tool:
1 Introduction to Active Directory Directory Services Uniquely identify users and resources on a network Provide a single point of network management.
Unified Address Book Security Implications. Unified Address Book Overview –What are we talking about –What is the Risk –What are we doing to minimize.
E-commerce Architecture Ayşe Başar Bener. Client Server Architecture E-commerce is based on client/ server architecture –Client processes requesting service.
Topic 11 Network Management. SNMPv1 This information is specific to SNMPv1. When using SNMPv1, the snmpd agent uses a simple authentication scheme to.
LDAP: Synchronizing LDAP Information CNS 4650 Fall 2004 Rev. 2.
The FederID project The First Identity Management and Federation Free Software.
1 Directory Services  What is a Directory Service?  Directory Services model  Directory Services naming model  X.500 and LDAP  Implementations of.
.NET Framework 2.0 .NET Framework 3.0 .NET Framework 3.5
Pertemuan 19 Introduction to TCP/IP
DATA COMMUNICATION Lecture-10.
Virtual Private Networks
Tim Bornholtz Director of Technology Services
UNIVERSITY INSTITUTE OF TECHNOLOGY
ACTIVE DIRECTORY An Overview.. By Karan Oberoi.
Introduction to Active Directory Directory Services
Kamal Satish M Persistent Systems Pvt. Ltd. Pune
Presentation transcript:

LDAP: Introduction CNS 4650 Fall 2004 Rev. 2

LDAP History Simplify directory access protocol Front-end to X.500 Developed my UMich

LDAP Benefits Lower overhead (No OSI stack) TCP/IP based Can use DNS for namespace Simple APIs

LDAP Standards Protocol is developed and enhanced by the IETF RFC model used to define standard LDAPv3 current standard LDAPv2 still relatively popular

Standards Bodies OASIS (Directory Service Markup Language [DSML]) Distributed Management Task Force (DMTF) (Common Information Model [CIM]) Internet Engineering Task Force (IETF) (LDAP Standards) Network Applications Consortium (NAC) (Users Group) Open Group Directory Interoperability Forum (DIF) (LDAP2000 Interoperability)

Core RFCs RFC 2251 (Protocol) RFC 2252 (MandatorySchema) RFC 2256 (User Schema) RFC 2256 (Distinguished Names) RFC 2829 (Authentication Methods) RFC 2254 (LDAP URLs) RFC 2830 (Transport Layer Security) RFC 2255 (Security Filters) RFC 2830 (Digest Authentication)

Lacking Standards Access Control Each to his own Most servers are or are adding support to simulate Microsoft ACLs Replication No clear standard This area is very proprietary Not a lot of willingness to share :-(

Directory Integration Usually pretty difficult Import schema from one to other Useful data stored in proprietary database No LDAP Interface Not just simply synchronization Can be expensive and time consuming

Meta-Directories Front-end directory Users view as a single directory Gathers data from different sources Synchronizes data to the various sources All servers required to run provisioning software Manages updates and changes Novell’s DirXML

Meta-Directories

Virtual Directories LDAP front-end Backend speaks other directories “language” SQL COBOL Does not require provisioning software on every server Virtual directory server does all the translating OctectString’s Virtual Directory

Virtual Directories