Browse Source

Added alternative implementations of LDAP section

master
akshay 2 years ago
parent
commit
f93e8e0f60
6 changed files with 20 additions and 7 deletions
  1. +0
    -0
      image/389ds.png
  2. BIN
      image/apachedirectorystudio.png
  3. BIN
      image/freeipa.png
  4. +0
    -0
      image/ldap_tree.png
  5. +20
    -7
      openldap.md
  6. BIN
      presentation.pdf

389ds.png → image/389ds.png View File


BIN
image/apachedirectorystudio.png View File

Before After
Width: 2304  |  Height: 1452  |  Size: 409 KiB

BIN
image/freeipa.png View File

Before After
Width: 1068  |  Height: 434  |  Size: 74 KiB

ldap_tree.png → image/ldap_tree.png View File


+ 20
- 7
openldap.md View File

@ -2,7 +2,7 @@
title: OpenLDAP
author: Akshay Pushparaj
theme: Berlin
#mainfont: Iosevka Regular
mainfont: Iosevka
fontsize: 8pt
---
# Introduction to LDAP
@ -21,7 +21,8 @@ LDAP information model is based on entries. An entry is a collection of attribut
## How is the information arranged?
Directory entries are arranged in a hierarchical tree-like structure.
![LDAP Tree](./ldap_tree.png){#id .class width=500 height=500 display=block}
![LDAP Tree](./image/ldap_tree.png){#id .class width=200 height=200 display=block}
## Differences between traditional databases
- LDAP is a open standard protocol.
@ -55,16 +56,22 @@ Some of the usecases of LDAP are:
- OpenLDAP is highly flexible. Has code-reliant functionality which doesn’t lock users into predetermined workflows; rather, we can manipulate the software to our exact needs.
## Cons
- Directory configuration and management are manual.
- Directory configuration and management are manual. Hence it is more time consuming and has a higher learning curve.
- OpenLDAP is a command-line application. However there are multiple LDAP browsers available which can be used in case a UI is required. Few of them listed below:
- [web2ldap](https://www.web2ldap.de/web2ldap.html)
- [Apache Directory](https://directory.apache.org/)
# Alternative LDAP implementation
## 389 DS and FreeIPA
# Other free software LDAP implementations
## 389 DS
- Like OpenLDAP, 389 DS or 389 Directory Server is a LDAP implementation by RedHat as part of the community-supported Fedora project.
- 389 DS have a graphical interface that can be used for administration.
![389 DS management console](./389ds.png){#id .class display=block}
##
![389 DS management console](./image/389ds.png){#id .class display=block}
## FreeIPA
- FreeIPA is an identity management system created by RedHat. The aim with FreeIPA is to provide a centrally managed Identity, Policy and Audit(IPA) system.
- Identity management ensure the right users have appropriate access to resources.
- Security policies are a set of requirements to maintain a safe and secure computing environment.
@ -74,7 +81,13 @@ Some of the usecases of LDAP are:
- The advantage of using FreeIPA is that it is easy to setup. Since everything is taken care by FreeIPA for us it has less flexibilty comapred to OpenLDAP.
- FreeIPA has a Web UI for administration.
## Samba
##
![Web UI](./image/freeipa.png)
## Samba
- Samba runs on Unix platforms, but speaks to Windows clients like a native. It allows a Unix system to move into a Windows "Network Neighborhood" without causing a stir. Windows users can happily access file and print services without knowing or caring that those services are being offered by a Unix host.
- Samba is an open source CIFS implementation. CIFS or Common Internet File System is a protocol suite used to share files remotely via IP.
- Samba allows for a Linux server to act as a Domain Controller. By doing so, user credentials on the Windows domain can be used instead of needing to be recreated and then manually kept in sync on the Linux server.
- A domain controller is a server that manages network and identity security, effectively acting as the gatekeeper for user authentication and authorization to IT resources within the domain.

BIN
presentation.pdf View File


Loading…
Cancel
Save