LDAP System Administration



•	Table of Contents
•	Index
•	Reviews
•	Reader Reviews
•	Errata

LDAP System Administration
By Gerald Carter

Publisher	: O'Reilly
Pub Date	: March 2003
ISBN	: 1-56592-491-6
Pages	: 308

How This Book Is Organized

Conventions Used in This Book

Comments and Questions

Acknowledgments

Part I: LDAP Basics

Chapter 1. "Now where did I put that...?", or "What is a directory?"

Section 1.1. The Lightweight Directory Access Protocol

Section 1.2. What Is LDAP?

Section 1.3. LDAP Models

Chapter 2. LDAPv3 Overview

Section 2.1. LDIF

Section 2.2. What Is an Attribute?

Section 2.3. What Is the dc Attribute?

Section 2.4. Schema References

Section 2.5. Authentication

Section 2.6. Distributed Directories

Section 2.7. Continuing Standardization

Chapter 3. OpenLDAP

Section 3.1. Obtaining the OpenLDAP Distribution

Section 3.2. Software Requirements

Section 3.3. Compiling OpenLDAP 2

Section 3.4. OpenLDAP Clients and Servers

Section 3.5. The slapd.conf Configuration File

Section 3.6. Access Control Lists (ACLs)

Chapter 4. OpenLDAP: Building a Company White Pages

Section 4.1. A Starting Point

Section 4.2. Defining the Schema

Section 4.3. Updating slapd.conf

Section 4.4. Starting slapd

Section 4.5. Adding the Initial Directory Entries

Section 4.6. Graphical Editors

Chapter 5. Replication, Referrals, Searching, and SASL Explained

Section 5.1. More Than One Copy Is "a Good Thing"

Section 5.2. Distributing the Directory

Section 5.3. Advanced Searching Options

Section 5.4. Determining a Server's Capabilities

Section 5.5. Creating Custom Schema Files for slapd

Section 5.6. SASL and OpenLDAP

Part II: Application Integration

Chapter 6. Replacing NIS

Section 6.1. More About NIS

Section 6.2. Schemas for Information Services

Section 6.3. Information Migration

Section 6.4. The pam_ldap Module

Section 6.5. The nss_ldap Module

Section 6.6. OpenSSH, PAM, and NSS

Section 6.7. Authorization Through PAM

Section 6.8. Netgroups

Section 6.9. Security

Section 6.10. Automount Maps

Section 6.11. PADL's NIS/LDAP Gateway

Chapter 7. Email and LDAP

Section 7.1. Representing Users

Section 7.2. Email Clients and LDAP

Section 7.3. Mail Transfer Agents (MTAs)

Chapter 8. Standard Unix Services and LDAP

Section 8.1. The Directory Namespace

Section 8.2. An FTP/HTTP Combination

Section 8.3. User Authentication with Samba

Section 8.4. FreeRadius

Section 8.5. Resolving Hosts

Section 8.6. Central Printer Management

Chapter 9. LDAP Interoperability

Section 9.1. Interoperability or Integration?

Section 9.2. Directory Gateways

Section 9.3. Cross-Platform Authentication Services

Section 9.4. Distributed, Multivendor Directories

Section 9.5. Metadirectories

Section 9.6. Push/Pull Agents for Directory Synchronization

Chapter 10. Net::LDAP and Perl

Section 10.1. The Net::LDAP Module

Section 10.2. Connecting, Binding, and Searching

Section 10.3. Working with Net::LDAP::LDIF

Section 10.4. Updating the Directory

Section 10.5. Advanced Net::LDAP Scripting

Part III: Appendixes

Appendix A. PAM and NSS

Section A.1. Pluggable Authentication Modules

Section A.2. Name Service Switch (NSS)

Appendix B. OpenLDAP Command-Line Tools

Section B.1. Debugging Options

Section B.2. Slap Tools

Section B.3. LDAP Tools

Appendix C. Common Attributes and Objects

Section C.1. Schema Files

Section C.2. Attributes

Section C.3. Object Classes

Appendix D. LDAP RFCs, Internet-Drafts, and Mailing Lists

Section D.1. Requests for Comments

Section D.2. Mailing Lists

Appendix E. slapd.conf ACLs

Section E.1. What?

Section E.2. Who?

Section E.3. How Much?

Section E.4. Examples