LDAP: Difference between revisions
mNo edit summary |
mNo edit summary |
||
| Line 9: | Line 9: | ||
==Tutorials and docs== | |||
*[[Pam-ldap]] | *[[Pam-ldap]] | ||
*http://www.zytrax.com/books/ldap/ | *http://www.zytrax.com/books/ldap/ | ||
| Line 17: | Line 17: | ||
*[http://www.gentoo.org/doc/en/ldap-howto.xml LDAP authentication on Gentoo (slightly outdated)] | *[http://www.gentoo.org/doc/en/ldap-howto.xml LDAP authentication on Gentoo (slightly outdated)] | ||
*[[LDAP Replication]] | *[[LDAP Replication]] | ||
*[http://www.linuxtopia.org/online_books//network_administration_guides/ldap_administration/appendix-common-errors_Common_causes_of_LDAP_errors.html Common causes of LDAP errors] | |||
==Tricks== | |||
ldapsearch -x -b -D "cn=admin,dc=example,dc=com" -b "dc=example,dc=com" "objectclass=*" | ldapsearch -x -b -D "cn=admin,dc=example,dc=com" -b "dc=example,dc=com" "objectclass=*" | ||
| Line 24: | Line 25: | ||
* [http://www.openldap.org/ http://www.openldap.org/] | * [http://www.openldap.org/ http://www.openldap.org/] | ||
*[http://www.redhat.com/docs/manuals/dir-server/deploy/7.1/deployTOC.html Red Hat Directory Server documentation, worth reading] | *[http://www.redhat.com/docs/manuals/dir-server/deploy/7.1/deployTOC.html Red Hat Directory Server documentation, worth reading] | ||
==FAQ== | |||
===additional info: structuralObjectClass: no user modification allowed=== | |||
use slapadd instead of ldapadd | |||
Revision as of 13:23, 19 May 2008
Lightweight Directory Access Protocol
In computer networking, the Lightweight Directory Access Protocol, or LDAP ("ell-dap"), is a networking protocol for querying and modifying directory services running over TCP/IP. An LDAP directory usually follows the X.500 model: it is a tree of entries, each of which consists of a set of named attributes with values. While some services use a more complicated "forest" model, the vast majority use a simple starting point for their database organization.
An LDAP directory often reflects various political, geographic, and/or organizational boundaries, depending on the model chosen. LDAP deployments today tend to use Domain Name System (DNS) names for structuring the most simple levels of the hierarchy. Further into the directory might appear entries representing people, organizational units, printers, documents, groups of people or anything else which represents a given tree entry, or multiple entries.
Its current version is LDAPv3. LDAPv3 is specified in a series of IETF Standard Track RFCs as detailed in RFC 4510.
Tutorials and docs
- Pam-ldap
- http://www.zytrax.com/books/ldap/
- http://tuxick.net/ldap.html
- http://ldapadministrator.com
- Apache Authentication with Active Directory
- LDAP authentication on Gentoo (slightly outdated)
- LDAP Replication
- Common causes of LDAP errors
Tricks
ldapsearch -x -b -D "cn=admin,dc=example,dc=com" -b "dc=example,dc=com" "objectclass=*"
Links
FAQ
additional info: structuralObjectClass: no user modification allowed
use slapadd instead of ldapadd
Keywords
rootdn
The user/account with full access
