Table of Contents
Introduction to LDAP
Agenda
Agenda (contd.)
Directory in German Research environment
What is a Directory?
What is a Directory?
So what really is the Directory
What kind of data can you store?
What is X.500?
X.500
Standardization boards
History of the X.500 standard
History contd.
Parts of the X.500 Standard
History of X.500: Projects
What was X.500 intended for?
Qualities of X.500
X.500 Information Tree
Directory Information Tree (DIT)
DN Distinguished Name
How is the information stored?
X.500 Information Model
Special Attributes
Directory Information Base
Example:
Some Objectclasses
Open structure
X.500 Client Server model
Distribution of the data among DSAs
Directory Server Protocols
Directory Server Protocols
Some more X.500 Features
What is LDAP?
History of LDAP: LDAP v1
1993: LDAP v2 �Proposed Standard
1995: LDAP v2�Draft Standard
1997: LDAP v3 �Proposed Standard
1997 LDAPv3 contd.
Who talks LDAP?
LDAP connectivity
LDAP Features
LDAP Information Model
LDAP Naming Model
LDAP Functional Model
LDAP Search Parameters
LDAP Search Parameters contd.
Search Filter Operators
Search Filter Operators (contd.)
Search Filter Extensions
Search filter combinations
Search filter special characters
LDAP URL (RFC 2255)
LDAPv3 Extension mechanisms
LDAPv3 Extension mechanisms contd.
LDAPv3 Extension mechanisms contd.
LDAPv3 Extension Standardization
RFC 2589
RFC 2589 contd.
RFC 2596
RFC 2649
RFC 2649 contd.
RFC 2696
LDAP Security Model
LDAP work on X.509: TLS
LDAP Authentication
LDAP Authentication contd.
IETF WG LDAPbis
Current LDAPbis Drafts
Current LDAPbis Drafts contd.
Current LDAPext drafts
Access Control
Access Control Requirements
Access Control Model
Basic ACI Attributes
Basic ACI Attributes contd.
Basic ACI Attributes� contd.
Basic ACI Attributes� contd.
ACI Examples:
ACI Examples contd.
LDAP Data Interchange Format LDIF
Schema definition
Replication
Replication
Non Standard LDAP Replication
Replication log file format
How to find LDAP Servers
Client configuration
Well known DNS aliases
Referrals
DNS SRV Records
DNS SRV Records contd.
Service Location Protocol
What can we do with Directories
LDAP for NIS
LDAP for NIS
LDAP for unified authentication
LDAP for unified auth.
Common Indexing Protocol�CIP
CIP contd.
Distributed Index system
The LDAP Indexing System
Index Gathering
Referral Server Architecture
Query routing
Security Requirements
Security Solutions
What can the index system be used for?
TF-LSD
TF-LSD cont.
Related TERENA activities
DSML
DSML Example
DSML Example contd.
PKI and Directory
PGP
Directory as Key Server Requirements
PGP key server
PKSD Problems
Problems of the Web of trust
New concepts for PGP key server
LDAP PGP-Keyserver requirements
Process of standardization
Status of LDAP PGP key server
A PGP key displayed (1)
A PGP key displayed (2)
What else can you do with it?
Distributed Metadata
Isaac Network
Isaak Project (contd.)
IMesh Toolkit
IMesh Toolkit (contd.)
Policy repository
What else can you do?
Questions?
|