Building an LDAP Server on Linux, Part 3 - Page 4

By Carla Schroder | Posted Nov 11, 2003
Page 4 of 4   |  Back to Page 1
Print ArticleEmail Article
  • Share on Facebook
  • Share on Twitter
  • Share on LinkedIn

Schema

Major sources of confusion are schema and object classes. In slapd.conf, see:

# Schema and objectClass definitions
include /etc/ldap/schema/core.schema
include /etc/ldap/schema/cosine.schema
include /etc/ldap/schema/nis.schema
include /etc/ldap/schema/inetorgperson.schema

These files contain the attributes that you are allowed to use in your LDAP records. Spend some time reading through these. I know, it's a painful exercise, but understanding the schema is the key to understanding how to use LDAP.

Now might be a good time to mention a useful GUI front-end for LDAP called GQ LDAP Client. It helps a great deal in visualizing the relationships between the different attributes. The excellent Web site LDAPman Schema Reference is another valuable tool you'll want to review.

Conclusion

Ok, it looks like we'll have one more LDAP article after all. In part 4 we'll add encryption and authenticate actual users. We'll wrap up the article (and the series) with some detailed sample configs.

Resources

Building an LDAP Server on Linux, Part 1
Building an LDAP Server on Linux, Part 2
OpenLDAP Administrator's Guide
GQ LDAP Client
LDAPman Schema Reference page.


» See All Articles by Columnist Carla Schroder


Comment and Contribute
(Maximum characters: 1200). You have
characters left.
Get the Latest Scoop with Enterprise Networking Planet Newsletter