diff --git a/389ds.png b/image/389ds.png similarity index 100% rename from 389ds.png rename to image/389ds.png diff --git a/image/apachedirectorystudio.png b/image/apachedirectorystudio.png new file mode 100644 index 0000000..3530b50 Binary files /dev/null and b/image/apachedirectorystudio.png differ diff --git a/image/freeipa.png b/image/freeipa.png new file mode 100644 index 0000000..68e6b68 Binary files /dev/null and b/image/freeipa.png differ diff --git a/ldap_tree.png b/image/ldap_tree.png similarity index 100% rename from ldap_tree.png rename to image/ldap_tree.png diff --git a/openldap.md b/openldap.md index 8fbbecf..da9f7a7 100644 --- a/openldap.md +++ b/openldap.md @@ -2,7 +2,7 @@ title: OpenLDAP author: Akshay Pushparaj theme: Berlin -#mainfont: Iosevka Regular +mainfont: Iosevka fontsize: 8pt --- # Introduction to LDAP @@ -21,7 +21,8 @@ LDAP information model is based on entries. An entry is a collection of attribut ## How is the information arranged? Directory entries are arranged in a hierarchical tree-like structure. -![LDAP Tree](./ldap_tree.png){#id .class width=500 height=500 display=block} +![LDAP Tree](./image/ldap_tree.png){#id .class width=200 height=200 display=block} + ## Differences between traditional databases - LDAP is a open standard protocol. @@ -55,16 +56,22 @@ Some of the usecases of LDAP are: - OpenLDAP is highly flexible. Has code-reliant functionality which doesn’t lock users into predetermined workflows; rather, we can manipulate the software to our exact needs. ## Cons -- Directory configuration and management are manual. +- Directory configuration and management are manual. Hence it is more time consuming and has a higher learning curve. +- OpenLDAP is a command-line application. However there are multiple LDAP browsers available which can be used in case a UI is required. Few of them listed below: + - [web2ldap](https://www.web2ldap.de/web2ldap.html) + - [Apache Directory](https://directory.apache.org/) -# Alternative LDAP implementation -## 389 DS and FreeIPA +# Other free software LDAP implementations +## 389 DS - Like OpenLDAP, 389 DS or 389 Directory Server is a LDAP implementation by RedHat as part of the community-supported Fedora project. - 389 DS have a graphical interface that can be used for administration. -![389 DS management console](./389ds.png){#id .class display=block} +## +![389 DS management console](./image/389ds.png){#id .class display=block} + +## FreeIPA - FreeIPA is an identity management system created by RedHat. The aim with FreeIPA is to provide a centrally managed Identity, Policy and Audit(IPA) system. - Identity management ensure the right users have appropriate access to resources. - Security policies are a set of requirements to maintain a safe and secure computing environment. @@ -74,7 +81,13 @@ Some of the usecases of LDAP are: - The advantage of using FreeIPA is that it is easy to setup. Since everything is taken care by FreeIPA for us it has less flexibilty comapred to OpenLDAP. - FreeIPA has a Web UI for administration. -## Samba +## +![Web UI](./image/freeipa.png) +## Samba +- Samba runs on Unix platforms, but speaks to Windows clients like a native. It allows a Unix system to move into a Windows "Network Neighborhood" without causing a stir. Windows users can happily access file and print services without knowing or caring that those services are being offered by a Unix host. +- Samba is an open source CIFS implementation. CIFS or Common Internet File System is a protocol suite used to share files remotely via IP. +- Samba allows for a Linux server to act as a Domain Controller. By doing so, user credentials on the Windows domain can be used instead of needing to be recreated and then manually kept in sync on the Linux server. +- A domain controller is a server that manages network and identity security, effectively acting as the gatekeeper for user authentication and authorization to IT resources within the domain. diff --git a/presentation.pdf b/presentation.pdf index a88a55c..09a8bed 100644 Binary files a/presentation.pdf and b/presentation.pdf differ