Categories
Ebooks
-
Business and economy
- Bitcoin
- Businesswoman
- Coaching
- Controlling
- E-business
- Economy
- Finances
- Stocks and investments
- Personal competence
- Computer in the office
- Communication and negotiation
- Small company
- Marketing
- Motivation
- Multimedia trainings
- Real estate
- Persuasion and NLP
- Taxes
- Social policy
- Guides
- Presentations
- Leadership
- Public Relation
- Reports, analyses
- Secret
- Social Media
- Sales
- Start-up
- Your career
- Management
- Project management
- Human Resources
-
For children
-
For youth
-
Education
-
Encyclopedias, dictionaries
-
E-press
- Architektura i wnętrza
- Biznes i Ekonomia
- Home and garden
- E-business
- Finances
- Personal finance
- Business
- Photography
- Computer science
- HR & Payroll
- Computers, Excel
- Accounts
- Culture and literature
- Scientific and academic
- Environmental protection
- Opinion-forming
- Education
- Taxes
- Travelling
- Psychology
- Religion
- Agriculture
- Book and press market
- Transport and Spedition
- Healthand beauty
-
History
-
Computer science
- Office applications
- Data bases
- Bioinformatics
- IT business
- CAD/CAM
- Digital Lifestyle
- DTP
- Electronics
- Digital photography
- Computer graphics
- Games
- Hacking
- Hardware
- IT w ekonomii
- Scientific software package
- School textbooks
- Computer basics
- Programming
- Mobile programming
- Internet servers
- Computer networks
- Start-up
- Operational systems
- Artificial intelligence
- Technology for children
- Webmastering
-
Other
-
Foreign languages
-
Culture and art
-
School reading books
-
Literature
- Antology
- Ballade
- Biographies and autobiographies
- For adults
- Dramas
- Diaries, memoirs, letters
- Epic, epopee
- Essay
- Fantasy and science fiction
- Feuilletons
- Work of fiction
- Humour and satire
- Other
- Classical
- Crime fiction
- Non-fiction
- Fiction
- Mity i legendy
- Nobelists
- Novellas
- Moral
- Okultyzm i magia
- Short stories
- Memoirs
- Travelling
- Narrative poetry
- Poetry
- Politics
- Popular science
- Novel
- Historical novel
- Prose
- Adventure
- Journalism, publicism
- Reportage novels
- Romans i literatura obyczajowa
- Sensational
- Thriller, Horror
- Interviews and memoirs
-
Natural sciences
-
Social sciences
-
School textbooks
-
Popular science and academic
- Archeology
- Bibliotekoznawstwo
- Cinema studies
- Philology
- Polish philology
- Philosophy
- Finanse i bankowość
- Geography
- Economy
- Trade. World economy
- History and archeology
- History of art and architecture
- Cultural studies
- Linguistics
- Literary studies
- Logistics
- Maths
- Medicine
- Humanities
- Pedagogy
- Educational aids
- Popular science
- Other
- Psychology
- Sociology
- Theatre studies
- Theology
- Economic theories and teachings
- Transport i spedycja
- Physical education
- Zarządzanie i marketing
-
Guides
-
Game guides
-
Professional and specialist guides
-
Law
- Health and Safety
- History
- Road Code. Driving license
- Law studies
- Healthcare
- General. Compendium of knowledge
- Academic textbooks
- Other
- Construction and local law
- Civil law
- Financial law
- Economic law
- Economic and trade law
- Criminal law
- Criminal law. Criminal offenses. Criminology
- International law
- International law
- Health care law
- Educational law
- Tax law
- Labor and social security law
- Public, constitutional and administrative law
- Family and Guardianship Code
- agricultural law
- Social law, labour law
- European Union law
- Industry
- Agricultural and environmental
- Dictionaries and encyclopedia
- Public procurement
- Management
-
Tourist guides and travel
- Africa
- Albums
- Southern America
- North and Central America
- Australia, New Zealand, Oceania
- Austria
- Asia
- Balkans
- Middle East
- Bulgary
- China
- Croatia
- The Czech Republic
- Denmark
- Egipt
- Estonia
- Europe
- France
- Mountains
- Greece
- Spain
- Holand
- Iceland
- Lithuania
- Latvia
- Mapy, Plany miast, Atlasy
- Mini travel guides
- Germany
- Norway
- Active travelling
- Poland
- Portugal
- Other
- Russia
- Romania
- Slovakia
- Slovenia
- Switzerland
- Sweden
- World
- Turkey
- Ukraine
- Hungary
- Great Britain
- Italy
-
Psychology
- Philosophy of life
- Kompetencje psychospołeczne
- Interpersonal communication
- Mindfulness
- General
- Persuasion and NLP
- Academic psychology
- Psychology of soul and mind
- Work psychology
- Relacje i związki
- Parenting and children psychology
- Problem solving
- Intellectual growth
- Secret
- Sexapeal
- Seduction
- Appearance and image
- Philosophy of life
-
Religion
-
Sport, fitness, diets
-
Technology and mechanics
Audiobooks
-
Business and economy
- Bitcoin
- Businesswoman
- Coaching
- Controlling
- E-business
- Economy
- Finances
- Stocks and investments
- Personal competence
- Communication and negotiation
- Small company
- Marketing
- Motivation
- Real estate
- Persuasion and NLP
- Taxes
- Guides
- Presentations
- Leadership
- Public Relation
- Secret
- Social Media
- Sales
- Start-up
- Your career
- Management
- Project management
- Human Resources
-
For children
-
For youth
-
Education
-
Encyclopedias, dictionaries
-
History
-
Computer science
-
Other
-
Foreign languages
-
Culture and art
-
School reading books
-
Literature
- Antology
- Ballade
- Biographies and autobiographies
- For adults
- Dramas
- Diaries, memoirs, letters
- Epic, epopee
- Essay
- Fantasy and science fiction
- Feuilletons
- Work of fiction
- Humour and satire
- Other
- Classical
- Crime fiction
- Non-fiction
- Fiction
- Mity i legendy
- Nobelists
- Novellas
- Moral
- Okultyzm i magia
- Short stories
- Memoirs
- Travelling
- Poetry
- Politics
- Popular science
- Novel
- Historical novel
- Prose
- Adventure
- Journalism, publicism
- Reportage novels
- Romans i literatura obyczajowa
- Sensational
- Thriller, Horror
- Interviews and memoirs
-
Natural sciences
-
Social sciences
-
Popular science and academic
-
Guides
-
Professional and specialist guides
-
Law
-
Tourist guides and travel
-
Psychology
- Philosophy of life
- Interpersonal communication
- Mindfulness
- General
- Persuasion and NLP
- Academic psychology
- Psychology of soul and mind
- Work psychology
- Relacje i związki
- Parenting and children psychology
- Problem solving
- Intellectual growth
- Secret
- Sexapeal
- Seduction
- Appearance and image
- Philosophy of life
-
Religion
-
Sport, fitness, diets
-
Technology and mechanics
Videocourses
-
Data bases
-
Big Data
-
Biznes, ekonomia i marketing
-
Cybersecurity
-
Data Science
-
DevOps
-
For children
-
Electronics
-
Graphics/Video/CAX
-
Games
-
Microsoft Office
-
Development tools
-
Programming
-
Personal growth
-
Computer networks
-
Operational systems
-
Software testing
-
Mobile devices
-
UX/UI
-
Web development
-
Management
Podcasts
- Ebooks
- Hardware
- Other
- Mastering OpenLDAP: Configuring, Securing and Integrating Directory Services. If you want to go beyond the fundamentals of OpenLDAP, this is the guide you need. Starting with the basics of installation, it progresses to sophisticated aspects of the server for web applications and services
E-book details
Log in, If you're interested in the contents of the item.
Mastering OpenLDAP: Configuring, Securing and Integrating Directory Services. If you want to go beyond the fundamentals of OpenLDAP, this is the guide you need. Starting with the basics of installation, it progresses to sophisticated aspects of the server for web applications and services
Ebook
This book is the ideal introduction to using OpenLDAP for Application Developers and will also benefit System Administrators running OpenLDAP. It prepares the reader to build a directory using OpenLDAP, and then employ this directory in the context of the network, taking a practical approach that emphasizes how to get things done. On occasion, it delves into theoretical aspects of LDAP, but only where understanding the theory helps to answer practical questions. The reader requires no knowledge of OpenLDAP, but even readers already familiar with the technology will find new things and techniques. This book is organized into three major sections: the first section covers the basics of LDAP directory services and the OpenLDAP server; the second focuses on building directory services with OpenLDAP; in the third section of the book, we look at how OpenLDAP is integrated with other applications and services on the network. This book not only demystifies OpenLDAP, but gives System Administrators and Application Developers a solid understanding of how to make use of OpenLDAP's directory services.The OpenLDAP directory server is a mature product that has been around (in one form or another) since 1995. It is an open-source server that provides network clients with directory services. All major Linux distributions include the OpenLDAP server, and many major applications, both open-source and proprietary, are directory aware and can make use of the services provided by OpenLDAP.The OpenLDAP directory server can be used to store organizational information in a centralized location, and make this information available to authorized applications. Client applications connect to OpenLDAP using the Lightweight Directory Access Protocol (LDAP) and can then search the directory and (if they have appropriate access) modify and manipulate records. LDAP servers are most frequently used to provide network-based authentication services for users; but there are many other uses for an LDAP server, including using the directory as an address book, a DNS database, an organizational tool, or even as a network object store for applications.
- Mastering OpenLDAP
- Table of Contents
- Mastering OpenLDAP
- Credits
- About the Author
- About the Reviewers
- Preface
- What This Book Covers
- What You Need for This Book
- Conventions
- Reader Feedback
- Customer Support
- Downloading the Example Code for the Book
- Errata
- Questions
- 1. Directory Servers and LDAP
- LDAP Basics
- What is a Directory?
- The Structure of a Directory Entry
- A Unique Name: The DN
- An Example LDAP Entry
- The Object Class Attribute
- Operational Attributes
- The Directory Information Tree
- What to Do with an LDAP Server
- The History of LDAP and OpenLDAP
- A Technical Overview of OpenLDAP
- The Server
- Clients
- Utilities
- Libraries
- Summary
- LDAP Basics
- 2. Installation and Configuration
- Before Getting Started
- OpenLDAP Binaries for Operating Systems
- Commercial OpenLDAP Distribution
- Source Code Compilation
- A Quick Note on Versions
- OpenLDAP Binaries for Operating Systems
- Installation
- Dependencies
- Installing OpenLDAP
- Configuring the SLAPD Server
- Basics
- Schemas
- More Directives
- Module Directives
- Database Configuration
- ACLs
- Verifying a Configuration File
- Basics
- Starting and Stopping the Server
- Using the Init Script
- Running SLAPD Directly
- Configuring the LDAP Clients
- A Basic ldap.conf File
- Size and Time Limits
- A Basic ldap.conf File
- Testing the Server
- Summary
- Before Getting Started
- 3. Using OpenLDAP
- A Brief Survey of the LDAP Suite
- LDAP from the Server Side
- SLAPD
- The Binding Operation
- The Search Operation
- More Operations: Additions, Modifications, and Deletions
- The Addition Operation
- The Modification Operation
- The Delete Operation
- Infrequent Operations
- The ModifyDN Operation
- The Compare Operation
- The Extended Operation
- SLAPD Summary
- SLURPD
- SLAPD
- Creating Directory Data
- The LDIF File Format
- Anatomy of an LDIF File
- Representing Attribute Values in LDIF
- Example.Com in LDIF
- Defining the Base DN Record
- Structuring the Directory with Organizational Units
- Theory 1: Directory as Organizational Chart
- Theory 2: Directory as IT Service
- Expressing the OUs in LDIF
- Adding User Records
- Adding System Records
- Adding Group Records
- The Complete LDIF File
- The LDIF File Format
- Using the Utilities to Prepare the Directory
- slapadd
- When Should slapadd be Used?
- What Does slapadd Do?
- Loading the LDIF File
- Stopping the Server
- Running ldapadd in Test Mode
- Importing the Records Using slapadd
- Restarting the Directory
- If Something Went Wrong...
- Destroying and Recreating the Directory Files
- slapindex
- slapcat
- Operational Attributes
- slapacl
- slapauth
- slapdn
- slappasswd
- Storing and Using Passwords in OpenLDAP
- Generating a Password with slappasswd
- slaptest
- slapadd
- Performing Directory Operations Using the Clients
- Common Command-Line Flags
- Common Flags
- Setting Defaults in ldap.conf
- ldapsearch
- A Simple Search
- Restricting Returned Fields
- Requesting Operational Attributes
- Searching Using a File
- ldapadd
- Adding Records from a File
- ldapmodify
- Adding a Record with ldapmodify
- Modifying Existing Records
- Modifying the Relative DN
- Moving a Record with modrdn
- Deleting Entire Records
- ldapdelete
- ldapcompare
- ldapmodrdn
- Modifying the Superior DN with ldapmodrdn
- ldappasswd
- ldapwhoami
- Common Command-Line Flags
- Summary
- 4. Securing OpenLDAP
- LDAP Security: The Three Aspects
- Securing Network-Based Directory Connections with SSL/TLS
- The Basics of SSL and TLS
- Authenticity
- Encryption
- StartTLS
- Creating an SSL/TLS CA
- Creating a Certificate
- Creating a New Certificate Request
- Signing the Certificate Request
- Configuring and Installing the Certificates
- Remove the Pass Phrase from the Key
- Relocate the Certificates
- Install the CA Certificate
- Optional: Clean Up
- Configuring StartTLS
- Configuring Client TLS
- Configuring LDAPS
- Debugging with the OpenSSL Client
- Using Security Strength Factors
- The security Directive
- A Fine-Grained security Directive
- The security Directive
- The Basics of SSL and TLS
- Authenticating Users to the Directory
- Simple Binding
- Using an Authentication User for Simple Binding
- SASL Binding
- Configuring Cyrus SASL
- The SASL Configuration File
- Setting a User Password
- Configuring SLAPD for SASL Support
- Using a Replacement String in authz-regexp
- Using a Search Filter in authz-regexp
- A Note on ACLs and Search Filters
- Failure of Mapping
- Removing the Need to Specify the Realm
- Debugging the SASL Configuration
- Configuring Cyrus SASL
- Using Client SSL/TLS Certificates to Authenticate
- Creating a New Client Certificate
- Configuring the Client
- Configuring the Server
- Testing with ldapwhoami
- Going Further with SASL
- Simple Binding
- Controlling Authorization with ACLs
- The Basics of ACLs
- Access to [resources]
- Access using DN
- Access using attrs
- Access using Filters
- Combining Access Specifiers
- By [who] [type of access granted] [control]
- The Access Field
- The who Field
- The * and anonymous Specifiers
- The self Specifier
- The users Specifier
- The dn Specifier
- Groups and Members
- Member-Based Record Access
- Network, Connections, and Security
- Advanced Step: Using the set Specifier
- The control Field
- Getting More from Regular Expressions
- Debugging ACLs
- A Practical Example
- Summary
- 5. Advanced Configuration
- Multiple Database Backends
- The slapd.conf File
- Creating and Importing a Second Directory
- Performance Tuning
- Performance Directives
- Global Directives
- Time Limits
- Idle Timeouts
- Size Limits
- Threads
- Directives in the Database Section
- Limits
- Read-only and Restrict Directives
- Index (BDB/HDB Backends Only)
- Controlling the Cache (BDB/HDB Only)
- Reducing Disk I/O Latency (BDB/HDB Only)
- Global Directives
- The DB_CONFIG File
- Setting the Cache Size
- Configuring the Data Directory
- Optimizing BDB/HDB Transaction Logging
- Tuning Lock Files
- More about Berkeley DB
- Performance Directives
- Directory Overlays
- A Brief Tour of the Official Overlays
- Configuring an Overlay: denyop
- Loading the module
- Adding the Overlay
- Adding Overlay-Specific Directives
- Referential Integrity Overlay
- Configuring the Overlay
- Modifying the Records
- Drawbacks
- A Useful Note
- The Uniqueness Overlay
- Summary
- Multiple Database Backends
- 6. LDAP Schemas
- Introduction to LDAP Schemas
- Why Do They Look So Complicated?
- Schema Definitions
- Object Classes and Attributes
- Object Class Definitions
- Attribute Definitions
- Object Identifier Definitions
- DIT Content Rules
- Retrieving the Schemas from SLAPD
- The ObjectClass Hierarchy
- Attribute Hierarchies
- Subordinate Attributes and Searching
- Object Class Types: Abstract, Structural, and Auxiliary
- The Object Class Hierarchy: An Overview
- Abstract Classes
- Structural Object Classes
- Auxiliary Object Classes
- Moving Onward
- Attribute Hierarchies
- Schemas: Accesslog and Password Policy Overlays
- Logging with the Accesslog Overlay
- Loading the accesslog Module
- Configuring the Access Log Backend
- Creating A Directory for the Access Log Files
- Enabling Logging for the Main Backend
- The Log Records
- Implementing a Complex Overlay: Password Policy
- Setting the Global Directives in slapd.conf: Schema and Module
- Creating a Password Policy
- Configure the Overlay Directives
- Test the Overlay
- Password Policy Operational Attributes
- Summary of ppolicy Operational Attributes
- Logging with the Accesslog Overlay
- Creating a Schema
- Getting an OID
- Giving Our OID a Name
- Creating Object Classes
- Creating Attributes
- Loading the New Schema
- Troubleshooting Schema Loading
- A New Record
- Summary
- Introduction to LDAP Schemas
- 7. Multiple Directories
- Replication: An Overview
- SyncRepl
- Configuring SyncRepl
- Configuring the Master Server
- Creating a SyncRepl User
- Configuring the Shadow Server
- The syncrepl Directive
- Configuring a Referral
- Starting Replication
- For Larger Directories...
- Delta SyncRepl
- The Master Servers Configuration
- The Shadow Server's Configuration
- Debugging SyncRepl
- Starting Over
- Strategic Logging
- A Few Common Mistakes
- Configuring the Master Server
- Configuring an LDAP Proxy
- Using the LDAP Backend
- Using Identity Management Features
- Turning the Simple Proxy into a Caching Proxy
- Notes on the Attribute Sets and Templates
- A Translucent Proxy
- Using the LDAP Backend
- Summary
- Replication: An Overview
- 8. LDAP and the Web
- The LDAP-Aware Application
- Apache and LDAP
- A Short Guide to Installing Apache
- Configuring LDAP Authentication
- Loading the Modules
- Editing the default Configuration File
- The Directory SectionApache 2.2
- Changes in Apache 2.0
- Other Features of the Require Parameter
- phpLDAPadmin
- Prerequisites
- Installing phpLDAPadmin
- Is Your Package Broken?
- Configuring phpLDAPadmin
- A Basic Look at Configuration Parameters
- Setting a variable
- Calling a function
- Setting an Array Value
- Configuring the LDAP Server Settings
- A Basic Look at Configuration Parameters
- A First Look at phpLDAPadmin
- Navigating phpLDAPadmin
- Viewing and Modifying a Record
- Adding a New Record
- Searching with phpLDAPadmin
- Summary
- A. Building OpenLDAP from Source
- Why Build from Source?
- Getting the Code
- The Tools for Compiling
- Build Tools
- Installing Dependencies
- Compiling OpenLDAP
- Configuring
- Building with make
- Installation
- Building Everything
- Summary
- B. LDAP URLs
- The LDAP URL
- Common Uses of LDAP URLs
- Not all LDAP URLs are for Searching
- For More Information on LDAP URLs...
- Summary
- C. Useful LDAP Commands
- Getting Information about the Directory
- The Root DSE
- The Subschema Record
- The Configuration Record
- Making a Directory Backup
- A Backup Copy of the Directory Database
- An LDIF Backup File
- Rebuilding a Database (BDB, HDB)
- Step 1: Stop the Server
- Step 2: Dump the Database
- Step 3: Delete the Old Database Files
- Step 4: Create a New Database
- Step 5: Restart SLAPD
- Troubleshooting Rebuilds
- Summary
- Getting Information about the Directory
- Index
- Title: Mastering OpenLDAP: Configuring, Securing and Integrating Directory Services. If you want to go beyond the fundamentals of OpenLDAP, this is the guide you need. Starting with the basics of installation, it progresses to sophisticated aspects of the server for web applications and services
- Author: Matt Butcher
- Original title: Mastering OpenLDAP: Configuring, Securing and Integrating Directory Services. If you want to go beyond the fundamentals of OpenLDAP, this is the guide you need. Starting with the basics of installation, it progresses to sophisticated aspects of the server for web applications and services.
- ISBN: 9781847191038, 9781847191038
- Date of issue: 2007-08-31
- Format: Ebook
- Item ID: e_3auc
- Publisher: Packt Publishing