LDAP Directrories Explained: An Introduction and Analysis

LDAP Directrories Explained: An Introduction and Analysis

by Brian Arkills
     
 

ISBN-10: 020178792X

ISBN-13: 9780201787924

Pub. Date: 03/07/2003

Publisher: Addison-Wesley

Directory technology promises to solve the problem of decentralized information that has arisen with the explosion of distributed computing. Lightweight Directory Access Protocol (LDAP) is a set of protocols that has become the Internet standard for accessing information directories. Until now, however, those curious about LDAP had no introductory source to learn

Overview

Directory technology promises to solve the problem of decentralized information that has arisen with the explosion of distributed computing. Lightweight Directory Access Protocol (LDAP) is a set of protocols that has become the Internet standard for accessing information directories. Until now, however, those curious about LDAP had no introductory source to learn how the technology can help them centrally manage information and reduce the cost of computing services.

LDAP Directories Explained provides technical managers and those new to directory services with a fundamental introduction to LDAP. This concise guide examines how the technology works and gives an overview of the most successful directory products in an easy-to-reference format.

Key topics include:

  • An overview of LDAP, including how directories differ from databases
  • The LDAP namespace, with an overview of DNS, LDAP object structure, and LDAP object naming
  • Client LDAP operations, including directory-enabled services and applications, searches, and the LDAP protocol
  • LDAP schema, including object classes, attributes, syntaxes, matching rules, and more
  • Directory management, including directory integration strategies, metadirectories, security, and more
  • LDAP vendors OpenLDAP, Microsoft Active Directory, and Directory Server
  • A case study of Stanford University's directory architecture, which illustrates how integral an LDAP directory can become to a business

If you are an information technology manager, LDAP Directories Explained will provide the technical foundation you need to make sound business decisions about LDAP. If you're a developer, this straightforward reference will bring you quickly up to speed on LDAP and directories.

020178792XB01292003

Product Details

ISBN-13:
9780201787924
Publisher:
Addison-Wesley
Publication date:
03/07/2003
Series:
Independent Technology Guides Series
Pages:
405
Product dimensions:
7.32(w) x 9.05(h) x 0.94(d)

Table of Contents



Foreword.


Preface.


Acknowledgments.

I. HOW LDAP WORKS.

1 Overview of LDAP.

Introducing Directories.

Structure.

Content and Usefulness.

Benefits of a Directory.

Introducing LDAP.

Mycompany.com.

Namespace.

Protocol.

Schema.

Management.

Vendor LDAP Products.

Why Choose LDAP?

2 LDAPNamespace.

DNS.

DNS Hierarchy.

DNS Resolution.

Basic DNS Record Types.

How LDAP Uses DNS.

LDAP Object Structure.

Allowed Structures.

LDAPContainers.

Structure Rules.

Naming Contexts.

LDAP Object Naming.

Relative Distinguished Name (RDN).

Naming Attributes.

Distinguished Name (DN).

Naming Special Characters.

URLNaming.

LDAP v2 Naming Conventions.

Special LDAP Structural Concepts.

Summary.

3. Client LDAP Operations.

Directory-Enabled Services and Applications.

Search.

Mandatory Search Parameters.

Optional Search Parameters.

Search Filters.

LDAPProtocol.

LDAPOperations.

LDAPControls.

LDAP Client Options.

APIs.

Summary.

Appendix Material.

4. LDAPSchema.

Object Classes.

Elements of an Object Class.

Creating the Entry You Want.

Attributes.

Elements of an Attribute Type.

Attribute Subtypes.

Attribute Options.

Operational Attributes.

Syntaxes.

Matching Rules.

OIDs.

Schema Checking.

Extended Schema Definitions.

DNS Extensions.

extensibleObject Object Class.

dynamicObject Object Class.

Java.

inetOrgPerson Object Class.

Still in Development.

Summary.

Appendix Material.

5. Directory Management.

Replication.

Partitions.

Replicas.

Referrals.

Referral Resolution.

Referral Syntax.

Referral Examples.

Chaining.

Aliases

Distributed Directory.

Reliability.

Replication Topology.

Maintenance.

Integrating Independent Directories.

Data Architecture Management.

Metadirectories: Glue Together Your Directories.

Master Directory.

Directory Synchronization.

Loose Directory Interconnection.

Harvesting Data (Connectors).

Moving Data Between Directories.

LDIF.

DSML.

Directory Security.

Authentication.

Authorization.

Encryption.

Administrative Server Parameters.

Other Directory Management Tasks.

Summary.

II. HOW VENDORS HAVE IMPLEMENTED LDAP.

6. OpenLDAP.

Namespace.

Naming Contexts and Partitions.

Distributed Directory Functionality.

Database Functionality.

Indexing.

Operations and Clients.

Clients.

Controls.

Schema.

Classes.

Attributes.

Management.

Special Configuration Parameters.

Security.

Authentication.

Authorization.

Privacy.

Why OpenLDAP?

7. Microsoft Active Directory.

Namespace.

DNS.

Directory Namespace.

Sites.

Naming Contexts and Partitions.

Global Catalog.

Operations and Clients.

Clients.

Controls.

Directory-Enabled Services.

Schema.

Classes.

Attributes.

Management.

Replication.

Indexing.

Data Architecture.

Special Configuration Parameters.

Security.

Authentication.

Authorization.

Privacy.

Why Active Directory?

8. Directory Server.

Namespace.

Naming Contexts.

Database Functionality.

Indexing.

Referrals.

Chaining.

Operations and Clients.

Clients.

Controls.

Plug-ins.

Schema.

Groups.

Roles.

Class of Service (CoS).

Management.

Replication.

Special Configuration Parameters.

Security.

Authentication.

Authorization.

Privacy.

Why Directory Server?

APPENDIXES.

A. Client LDAP Operations Appendix.

Draft Controls.

PSEARCH.

TSEARCH.

DIRSYNC.

LCUP.

Chaining.

Virtual List View.

C language API.

B. Schema Appendix.

Schema Formats.

ASN.1 Object Class Syntax.

ASN.1 Attribute Syntax.

BNF Object Class Syntax.

BNF Attribute Syntax.

Slapd.conf Object Class Syntax.

Slapd.conf Attribute Syntax.

Common Syntaxes.

Common Matching Rules.

C. Stanford University Directory Architecture.

Environment.

Source Systems.

Stanford Registry.

Privacy Controls.

Directory Harvester.

Event Database.

Stanford Directory.

E-mail Service Integration.

Web UI Integration.

Updating Your Personal Information.

Active Directory Harvester.

Privacy Control in AD.

Summary.

D. OpenLDAP Access Control.

<What> Element.

<Who> Element.

<Access> Element.

Evaluation of Access.

Comprehensive Example.

E. Active Directory Controls Appendix.

F. Directory Server Appendix.

Default Indexes.

Access Control Instructions (ACIs).

ACI Targets.

ACI Heading.

ACI Permissions.

ACI Bind Rules.

Putting an ACI Together.

Macro ACIs.

Plug-ins.

G. Online Reference Material.

Chapter 1 Topics.

Articles.

LDAPSupersites.

Chapter 2 Topics.

DNS.

Referrals.

Escaping Special Characters.

Chapter 3 Topics.

Programming Resources.

Encoding Resources.

Directory Integration.

Chapter 4 Topics.

X.500.

ASN.1.

Schema Resources.

Chapter 5 Topics.

Metadirectories.

DSML.

Security.

Stanford University.

Chapter 6 Topics.

Building OpenLDAP.

OpenLDAP Admin Guide.

Mailing List Archives.

Chapter 7 Topics.

Linked Attributes.

Chapter 8 Topics.

Server Documentation.

Programming Resources.

Index. 020178792XT01292003

Customer Reviews

Average Review:

Write a Review

and post it to your social network

     

Most Helpful Customer Reviews

See all customer reviews >