CYAN YELLOW MAGENTA BLACK PANTONE 123 CV
BOOKS FOR PROFESSIONALS BY PROFESSIONALS® THE EXPERT’S VOICE® IN NETWORKING
Deploying OpenLDAP Deploying OpenLDAP
Dear Reader, If you’re a developer, system administrator, or database administrator consid- ering OpenLDAP, then keep reading! I’ll show you the types of decisions you need to make regarding the OpenLDAP environment before downloading any software. In Deploying OpenLDAP, I discuss how to evaluate your current environ- ment, consolidate data, plan for data creation and migration, and plan the most useful directory infrastructure possible. I then cover the configuration files and the base set of tools. Finally, I discuss APIs and how to integrate OpenLDAP into your current environment. With this information, you’ll be able to make essential decisions before installing and configuring your OpenLDAP environment. In fact, properly designing and deploying OpenLDAP from the start will give you access to many of the best features of the technology—features that may otherwise be unusable. I wrote this book to assist you with practical tasks, not the theory of OpenLDAP. By carefully evaluating your needs and implementing my sugges- Deploying tions, you’ll be able to build a directory that will make your network run much more efficiently. Tom Jackiewicz OpenLDAP
Join online discussions: forums.apress.com FOR PROFESSIONALS BY PROFESSIONALS™ Jackiewicz
ISBN 1-59059-413-4 53999 Tom Jackiewicz www.apress.com
US $39.99 Shelve in Networking 6 89253 15134 1 9 781590 594131 User level: Beginner–Intermediate
this print for content only—size & color not accurate spine = 0.765" 344 page count
4134_FM_final.qxd 9/30/04 10:55 AM Page i
Deploying OpenLDAP
TOM JACKIEWICZ 4134_FM_final.qxd 9/30/04 10:55 AM Page ii
Deploying OpenLDAP Copyright (c)2005 by Tom Jackiewicz All rights reserved. No part of this work may be reproduced or transmitted in any form or by any means, electronic or mechanical, including photocopying, recording, or by any information storage or retrieval system, without the prior written permission of the copyright owner and the publisher. ISBN (pbk): 1-59059-413-4 Printed and bound in the United States of America 9 8 7 6 5 4 3 2 1 Trademarked names may appear in this book. Rather than use a trademark symbol with every occurrence of a trademarked name, we use the names only in an editorial fashion and to the benefit of the trademark owner, with no intention of infringement of the trademark. Lead Editor: Jim Sumser Technical Reviewers: Massimo Nardone, Oris Orlando Editorial Board: Steve Anglin, Dan Appleman, Ewan Buckingham, Gary Cornell, Tony Davis, John Franklin, Jason Gilmore, Chris Mills, Dominic Shakeshaft, Jim Sumser Project Manager: Laura E. Brown Copy Edit Manager: Nicole LeClerc Copy Editor: Kim Wimpsett Production Manager: Kari Brooks-Copony Production Editor: Laura Cheu Compositor: Linda Weidemann Proofreader: Nancy Sixsmith Indexer: John Collin Artist: Kinetic Publishing Services, LLC Cover Designer: Kurt Krames Manufacturing Manager: Tom Debolski Distributed to the book trade in the United States by Springer-Verlag New York, LLC, 233 Spring Street, 6th Floor, New York, New York 10013 and outside the United States by Springer-Verlag GmbH & Co. KG, Tiergartenstr. 17, 69112 Heidelberg, Germany. In the United States: phone 1-800-SPRINGER, fax 201-348-4505, e-mail [email protected], or visit http://www.springer-ny.com. Outside the United States: fax +49 6221 345229, e-mail [email protected], or visit http://www.springer.de. For information on translations, please contact Apress directly at 2560 Ninth Street, Suite 219, Berkeley, CA 94710. Phone 510-549-5930, fax 510-549-5939, e-mail [email protected], or visit http://www.apress.com. The information in this book is distributed on an “as is” basis, without warranty. Although every precau- tion has been taken in the preparation of this work, neither the author(s) nor Apress shall have any liabil- ity to any person or entity with respect to any loss or damage caused or alleged to be caused directly or indirectly by the information contained in this work. 4134_FM_final.qxd 9/30/04 10:55 AM Page iii
This book is dedicated to all those who suffered while I grew up from a bright and curious kid to the bitter, stubborn, and outspoken person I’ve become, especially my dad, Zdzislaw Jackiewicz. 4134_FM_final.qxd 9/30/04 10:55 AM Page iv 4134_FM_final.qxd 9/30/04 10:55 AM Page v
Contents at a Glance
About the Author ...... xiii About the Technical Reviewers...... xv Acknowledgments ...... xvii Preface...... xix Introduction...... xxi
CHAPTER 1 Assessing Your Environment ...... 1 CHAPTER 2 Understanding Data Definitions ...... 23 CHAPTER 3 Implementing Deployment, Operations, and Administration Strategies ...... 47 CHAPTER 4 Installing OpenLDAP ...... 65 CHAPTER 5 Implementing OpenLDAP...... 93 CHAPTER 6 Scripting and Programming LDAP ...... 123 CHAPTER 7 Integrating at the System Level ...... 199 CHAPTER 8 Integrating OpenLDAP with Applications, User Systems, and Client Tools ...... 263
INDEX...... 289
v 4134_FM_final.qxd 9/30/04 10:55 AM Page vi 4134_FM_final.qxd 9/30/04 10:55 AM Page vii
Contents
About the Author ...... xiii About the Technical Reviewers...... xv Acknowledgments ...... xvii Preface...... xix Introduction...... xxi