Until now, it has been difficult to find the right source of information on LDAP and directory server implementations: books on the subject are overly product-specific, and a search on the Web results in information overload. The ABCs of LDAP: How to Install, Run, and Administer LDAP Services strikes the right balance, providing a synopsis of LDAP fundamentals without getting wrapped up in one particular implementation.
This book is for network and systems administrators who want to begin using LDAP more extensively. It delivers the theoretical background needed to understand how these servers work, resulting in clear, concise examples of implementations in both commercial and OpenLDAP environments.
The text is structured so that each chapter can stand on its own, with brief descriptions of terms supplemented by references to more detailed explanations in other chapters. You also benefit from a concise overview of how to design a directory, preparing you to execute directory deployments for email, PKI, DNS, NIS servers, and many other productivity-enhancing applications.
Topics include major LDAP APIs, such as PHP, Perl, and Java, as well as distributed command line tools. The book covers ways to integrate LDAP into existing systems, and provides hands-on examples within working implementations.
THE LDAP PROTOCOL Directories and Directory Server Network Protocols The TCP/IP Protocol Stack The OSI Protocol Stack Internet Standards: RFCs DAP: X.500 Standard Finally.... LDAP LDAP: How It Works Under the Hood: The Database Holding Information Conclusion HELLO WORLD IN LDAP The Example: An Enterprise with a Few Departments Objects in LDAP: Object Classes, Attributes, and Schema The Server Configuration The First Steps with LDAP Updating a Directory with a Batch Process The LDIF Standard Ldapsearch Revisited: Search Filter LDAP: Wasn't It a Protocol? Even Your Favorite Browser Speaks LDAP Conclusion LDAP MODELS Introduction The Information Model The Naming Model The Functional Model The Security Model LDAP: Some Practical Details Distributed Architectures Introduction on Replication & Partitioning Data Distribution between LDAP and non-LDAP systems Partitioning What is partitioning? Gluing the directories together Referrals Examples And now... from the client point of view Chaining Security Aspects using chaining Difference between Chaining and Referrals Replication Replication Scenarios Schema Information and ACL Single Master versus Multi Master Replication Agreements Load Sharing Security Aspects Work in Progress... Data Distribution between LDAP and non-LDAP systems Meta Directory DSML DSML Tools Castor Conclusion LDAP APIS LDAP Command Line Tools LDAP and PHP Perl and LDAP The C LDAP API The Java LDAP API What's missing LDAP Directory Server Administration Open Source Software Getting the directory server up'n running Software Installation OpenLDAP Installation SUN ONE Installation Securing Your LDAP Server Setting up security in SUN ONE Setting up security in OpenLDAP LDAP Server Configuration Load the data Log files Start/Stop of the server Backup and Recovery Service Level Agreement Backup Methods System Monitoring User Administration LDAP Users, Groups and...UNIX LDAP AND WEB SERVICES Introduction LDAP URLs Accessing an LDAP Server via CGI Scripts Accessing an LDAP Server via an Application Server Gateways Web Server Authentication Example: The auth ldap Module for Apache LDAP Authentication Using CGI Scripts LDAP Authentication Using the PHP Preprocessor LDAP and the WEB: A Case Study Conclusion THE DESIGN OF DIRECTORY SERVICES Introduction The Directory Life Cycle Planning of Directory Services The Goal of the Project The Benefits of the Project The Objectives of the Project The Target of the Project The Analysis of the Actual Situation The Steps to Perform The Project Plan Design of Directory Services Data Design Schema Design Tree Design Choosing a Root for the Directory Information Tree Branching the Directory Tree Partitioning Replication