`
sillycat
  • 浏览: 2551937 次
  • 性别: Icon_minigender_1
  • 来自: 成都
社区版块
存档分类
最新评论

2018 LDAP(1)Introduction

 
阅读更多
2018 LDAP(1)Introduction

LDAP protocol - Lightweight Directory Access Protocol
high read performance, high search performance. Less write, more read.

Some popular Use Case:
Company Employee Information, name, phone, emails
Private/Public Key Pair
Company Hardware Information, server, IP address, location, made, purchase time and etc.

Entry
Item, all CRUD operation is on top of this item.
dn - distinguished Name, DN,    dn: “cn=baby, ou=marketing,ou=people,dc=mydomain,dc=org”

rdn - on the most left side, cn=baby

Base DN:  top root, dc=mydomain, dc=org

Attribute
commonName  - cn - Directory String - name - Carl
surname.           - sn - Directory String - last name - Luo
organizationUnitName - ou - Directory String - Department - Engineering
organization       - o  - Directory String - Org - example
telephoneNumber
objectClass                           Internal properties

Some more detail
https://segmentfault.com/a/1190000002607140

Schema - ObjectClass, AttributeType, Syntax - /etc/ldap/schema/

Backend and database
slapd will response to requests, data operations are handled by Backends and database.
https://linux.die.net/man/5/slapd.backends

TLS & SASL
SSL/TLS

LDIF - LDAP Data Interchange Format
Some sample format
# cat add_entry.ldif
dn: ou=Marketing, dc=example,dc=com
changetype: add
objectclass: top
objectclass: organizationalUnit
ou: Marketing
dn: cn=Pete Minsky,ou=Marketing,dc=example,dc=com
changetype: add
objectclass: person
objectclass: organizationalPerson
objectclass: inetOrgPerson
cn: Pete Minsky
sn: Pete
ou: Marketing
description: sb, sx
description: sx
uid: pminsky

ldapmodify -xWD 'cn=admin,dc=example,dc=com' -f add_entry.ldif

Some tools
http://directory.apache.org/studio/users-guide.html

Format
ldap://servername/DN
DN distinguished Name - CN, OU, DC
DC - Domain Component
CN - Common Name
OU - Organizational Unit

DC=redmond, DC=wa, DC=microsoft, DC=com
Com\Microsoft\Wa\Redmond

CN=test, OU=developer, DC=domainname, DC=com
One user test is under department developer of domain name domainname.com

LDAPJS
http://ldapjs.org/
http://ldapjs.org/guide.html
https://teakki.com/p/57dfa8253c20b02e90a0d18a

References:
http://blog.51cto.com/jueshizhanhun/1232041
https://www.suse.com/zh-cn/documentation/sles10/book_sle_reference/data/sec.ldap.tree.html
https://www.suse.com/zh-cn/documentation/sles10/book_sle_reference/data/cha.ldap.html
http://blog.51cto.com/407711169/1439623
http://blog.sina.com.cn/s/blog_6d6f5d7d0100m63i.html




分享到:
评论

相关推荐

    LDAP Directories Explained_ An Introduction and Analysis_书2.pdf

    本书《LDAP Directories Explained: An Introduction and Analysis》旨在为读者提供一个全面的LDAP入门指南,不仅介绍了LDAP的基本概念和技术细节,还探讨了其在现代信息技术环境中的应用。 #### 二、LDAP与传统...

    和LDAP认证相关的RFC文档

    1. **RFC 4510:Lightweight Directory Access Protocol (LDAP): Overview and Introduction** - 这个文档提供了一个关于LDAP的高层次概述,解释了它的设计目标、基本操作以及与其他协议的关系。 2. **RFC 4511:...

    Practical Spring LDAP英文原版

    1. **Chapter 1: Introduction to LDAP** - 这一章深入浅出地介绍了LDAP的基本原理,包括目录服务的概念、架构以及LDAP协议的主要特性。 2. **Chapter 2: Java Support for LDAP** - 阐述了Java对LDAP的支持,讲解...

    Introduction of JMetrer

    根据所提供的文件信息,“Introduction of JMetrer”是一份PDF文档,旨在介绍JMeter的基本概念及其在性能测试中的应用。JMeter由Apache基金会维护和支持,是一款纯Java编写的开源桌面应用。 #### 二、性能测试的...

    CAS协议 - Introduction、Conventions & Definitions、CAS Entities

    1. **Service**: 指的是需要用户认证的应用系统。服务提供者(Service Provider)会请求CAS验证用户的凭证。 2. **Ticket Granting Ticket (TGT)**: 用户成功认证后,CAS服务器返回的一个一次性票证,用于后续的...

    chap01 introduction.pdf

    1. 虚拟化技术的融合:Proxmox VE融合了KVM和LXC两种虚拟化技术,利用KVM实现硬件虚拟化,使用LXC进行轻量级容器虚拟化,使用户能够根据需求选择合适的虚拟化方法。 2. 简化的集群管理:Proxmox VE的集群管理功能...

    Oracle BPM Training and add in introduction

    2. **服务集成与EAI**:通过与各种企业应用和服务(如门户、SOA、IDRS、LDAP等)的紧密集成,实现业务流程中的数据交换和服务调用。 3. **表单生成器**:快速创建复杂的业务表单,简化数据输入过程。 4. **监控与...

    Core Java 9th Edition(Vol1,Vol2)

    Java 核心编程第9版(英文版)...JNDI and LDAP Internationalization Advanced GUI components Java 2D and advanced AWT JavaBeans Security RMI and Web services Collections Annotations Native methods

    introduction oracle 9i

    1. **数据库体系结构**:Oracle 9i采用了多层的客户端/服务器架构,支持分布式数据库系统。它引入了Real Application Clusters(RAC),使得多个服务器可以共享同一个数据库实例,增强了系统的可用性和可扩展性。 2...

    ActiveMQ培训材料

    首先,我们从01-Day1-Introduction-to-FUSE-MessageBroker-0.5h.pdf开始,这个文件将介绍Apache FUSE Message Broker,即ActiveMQ的集成环境。FUSE提供了简化部署和管理ActiveMQ的工具,使得企业可以快速地构建和...

    loggrove:Loggrove是对本地、远程日志文件进行 分页阅读、实时阅读、关键词匹配、统计、监控、钉钉告警、Highcharts图表展示 的 Web 平台服务,并包含 用户认证、LDAP认证、操作审计 等基础服务

    Loggrove 是对本地、远程日志文件进行 分页阅读、实时阅读(websocket)、关键词匹配、统计、监控、钉钉告警、Highcharts趋势图展示 的 Web 平台服务,并包含 用户认证、LDAP认证、操作审计 等基础服务。 DEMO 地址...

    Java2核心技术卷I+卷2:基础知识(第8版) 代码

    Introduction to LDAP 279 Chapter 5: Internationalization 297 Locales 298 Number Formats 303 Date and Time 310 Collation 318 Message Formatting 324 Text Files and Character Sets 328 Resource...

    Solaris 10 System Administration Essentials

    Chapter 1 Installing the Solaris 10 Operating System 1 1.1 Methods to Meet Your Needs 1 1.2 The Basics of Solaris Installation 2 1.2.1 Installing Solaris on a SPARC System 6 1.2.2 Installing Solaris ...

    java.核心技术.第八版 卷1

    Chapter 1: An Introduction to Java 1 Java As a Programming Platform 2 The Java "White Paper" Buzzwords 2 Java Applets and the Internet 7 A Short History of Java 9 Common Misconceptions about Java...

    SUO introuduction

    标题:SUO introuduction(应为SIP Introduction) 描述:介绍SIP协议,对于需要了解SIP协议的人会有较好的帮助。 ### SIP协议详解 #### 什么是SIP? SIP,全称为Session Initiation Protocol(会话初始协议),...

    Python Cookbook, 2nd Edition

    Chapter 1. Text Introduction Recipe 1.1. Processing a String One Character at a Time Recipe 1.2. Converting Between Characters and Numeric Codes Recipe 1.3. Testing Whether an Object Is ...

    Apache Shiro 1.2.x 参考手册1

    1. **Introduction** (介绍) Apache Shiro 的介绍部分通常会涵盖它的设计目标、基本概念以及它如何与传统的 Java 安全模型相区别。Shiro 的主要优势在于其简单直观的 API,使得开发者能够快速地集成安全控制到应用...

    hydra 7.2 win32

    INTRODUCTION ------------ Number one of the biggest security holes are passwords, as every password security study shows. This tool is a proof of concept code, to give researchers and security ...

    Active Directory Cookbook, 3rd Edition.pdf

    Chapter 1, Getting Started Sets the stage for the book by covering where you can find the tools used in the book, VBScript and PowerShell issues to consider, and where to find additional information. ...

Global site tag (gtag.js) - Google Analytics