Home Page Icon
Home Page
Table of Contents for
I. How LDAP Works
Close
I. How LDAP Works
by Brian Arkills
LDAP Directories Explained: An Introduction and Analysis
Copyright
Dedication
Independent Technology Guides
Foreword
Preface
Audience
About the Book
Appendixes
Acknowledgments
I. How LDAP Works
1. Overview of LDAP
Introducing Directories
Structure
Content and Usefulness
Directories Versus Databases
Typical Directory Use
Benefits of a Directory
Introducing LDAP
Mycompany.com
Namespace
Protocol
Client-Server Model
Clients
Operations
Schema
Schema Checking
Default Schema
Extending the Schema
Management
Distributed Directory
Integration and Data Manipulation
Security
Vendor LDAP Products
Why Choose LDAP?
2. LDAP Namespace
DNS
DNS Hierarchy
DNS Resolution
Basic DNS Record Types
How LDAP Uses DNS
LDAP Object Structure
Allowed Structures
LDAP Containers
Structure Rules
Naming Contexts
LDAP Object Naming
Relative Distinguished Name (RDN)
Naming Attributes
Distinguished Name (DN)
Naming Special Characters
URL Naming
LDAP v2 Naming Conventions
Special LDAP Structural Concepts
Summary
3. Client LDAP Operations
Directory-Enabled Services and Applications
Search
Mandatory Search Parameters
Optional Search Parameters
Search Filters
Extended Match Filters
Special Characters in Search Filters
LDAP Protocol
LDAP Operations
Bind
Search
Compare
Add
Delete
Modify
ModifyRDN or Rename
Unbind
Abandon
Extended
LDAP Controls
LDAP Client Options
APIs
Summary
Appendix Material
4. LDAP Schema
Object Classes
Elements of an Object Class
Creating the Entry You Want
Option 1: Use Inheritance and Object Class Relationships
Option 2: Use an Auxiliary Class
Attributes
Elements of an Attribute Type
Attribute Subtypes
Attribute Options
Language Support
Operational Attributes
Subschema and directoryOperation Attributes
rootDSE Entry and dSAOperation Attributes
Syntaxes
Matching Rules
OIDs
Schema Checking
Extended Schema Definitions
DNS Extensions
extensibleObject Object Class
dynamicObject Object Class
Java
inetOrgPerson Object Class
Still in Development
Summary
Appendix Material
5. Directory Management
Replication
Partitions
Replicas
Referrals
Referral Resolution
Referral Syntax
Referral Examples
Chaining
Aliases
Distributed Directory
Reliability
Replication Topology
Maintenance
Integrating Independent Directories
Data Architecture Management
Sources and Owners
Subscribers and Consumers
Privacy Concerns
Metadirectories: Glue Together Your Directories
Master Directory
Directory Synchronization
Loose Directory Interconnection
Harvesting Data (Connectors)
Moving Data Between Directories
LDIF
LDIF Examples
DSML
Directory Security
Authentication
Authorization
Encryption
How Encryption Relates to LDAP Management
Shared Secret Key Encryption
Public Key Encryption
Digital Signatures
Certificates and Certificate Authority
SSL and TLS
Administrative Server Parameters
Other Directory Management Tasks
Summary
II. How Vendors Have Implemented LDAP
6. OpenLDAP
Namespace
Naming Contexts and Partitions
Distributed Directory Functionality
Database Functionality
Indexing
Operations and Clients
Clients
Directory-Enabled Applications
Programming Support
Controls
Schema
Classes
Attributes
Management
Special Configuration Parameters
Security
Authentication
Authorization
Privacy
Why OpenLDAP?
7. Microsoft Active Directory
Namespace
DNS
Directory Namespace
Sites
Naming Contexts and Partitions
Configuration Partition
Domain Partition
Schema Partition
Global Catalog
Operations and Clients
Clients
Integrated Clients
Programming Support
Controls
Directory-Enabled Services
Schema
Classes
Attributes
Management
Replication
Indexing
Data Architecture
Special Configuration Parameters
Security
Authentication
Authorization
Privacy
Why Active Directory?
8. Directory Server
Namespace
Naming Contexts
Database Functionality
Indexing
Referrals
Chaining
Operations and Clients
Clients
Directory-Enabled Applications
Programming Support
Controls
Plug-ins
Schema
Groups
Roles
Class of Service (CoS)
Pointer CoS
Classic CoS
Indirect CoS
Management
Replication
Special Configuration Parameters
Security
Authentication
Authorization
Privacy
Why Directory Server?
Appendixes
A. Client LDAP Operations Appendix
Draft Controls
PSEARCH
TSEARCH
DIRSYNC
LCUP
Chaining
Virtual List View
C language API
B. Schema Appendix
Schema Formats
ASN.1 Object Class Syntax
Example
ASN.1 Attribute Syntax
Example
BNF Object Class Syntax
Example
BNF Attribute Syntax
Example
Slapd.conf Object Class Syntax
Example
Slapd.conf Attribute Syntax
Example
Common Syntaxes
Common Matching Rules
C. Stanford University Directory Architecture
Environment
Source Systems
Stanford Registry
Privacy Controls
Directory Harvester
Event Database
Stanford Directory
E-mail Service Integration
Web UI Integration
Updating Your Personal Information
Active Directory Harvester
Privacy Control in AD
Summary
D. OpenLDAP Access Control
<What> Element
<Who> Element
<Access> Element
Evaluation of Access
Comprehensive Example
E. Active Directory Controls Appendix
F. Directory Server Appendix
Default Indexes
Access Control Instructions (ACIs)
ACI Targets
ACI Heading
ACI Permissions
ACI Bind Rules
Putting an ACI Together
Macro ACIs
Plug-ins
G. Online Reference Material
Chapter 1 Topics
Articles
LDAP Supersites
Chapter 2 Topics
DNS
Referrals
Escaping Special Characters
Chapter 3 Topics
Programming Resources
Encoding Resources
Base64 Encode and Decode Base64 Files
Directory Integration
Chapter 4 Topics
X.500
ASN.1
Schema Resources
Chapter 5 Topics
Metadirectories
DSML
Security
Stanford University
Chapter 6 Topics
Building OpenLDAP
Chapter 7 Topics
Chapter 8 Topics
Server Documentation
Programming Resources
Search in book...
Toggle Font Controls
Playlists
Add To
Create new playlist
Name your new playlist
Playlist description (optional)
Cancel
Create playlist
Sign In
Email address
Password
Forgot Password?
Create account
Login
or
Continue with Facebook
Continue with Google
Sign Up
Full Name
Email address
Confirm Email Address
Password
Login
Create account
or
Continue with Facebook
Continue with Google
Prev
Previous Chapter
Acknowledgments
Next
Next Chapter
1. Overview of LDAP
Part I. How
LDAP
Works
Add Highlight
No Comment
..................Content has been hidden....................
You can't read the all page of ebook, please click
here
login for view all page.
Day Mode
Cloud Mode
Night Mode
Reset