Building an LDAP Server on Linux, Part 3 - Page 4

 By Carla Schroder
Page 4 of 4   |  Back to Page 1
Print Article


Major sources of confusion are schema and object classes. In slapd.conf, see:

# Schema and objectClass definitions
include /etc/ldap/schema/core.schema
include /etc/ldap/schema/cosine.schema
include /etc/ldap/schema/nis.schema
include /etc/ldap/schema/inetorgperson.schema

These files contain the attributes that you are allowed to use in your LDAP records. Spend some time reading through these. I know, it's a painful exercise, but understanding the schema is the key to understanding how to use LDAP.

Now might be a good time to mention a useful GUI front-end for LDAP called GQ LDAP Client. It helps a great deal in visualizing the relationships between the different attributes. The excellent Web site LDAPman Schema Reference is another valuable tool you'll want to review.


Ok, it looks like we'll have one more LDAP article after all. In part 4 we'll add encryption and authenticate actual users. We'll wrap up the article (and the series) with some detailed sample configs.


Building an LDAP Server on Linux, Part 1
Building an LDAP Server on Linux, Part 2
OpenLDAP Administrator's Guide
GQ LDAP Client
LDAPman Schema Reference page.

» See All Articles by Columnist Carla Schroder

This article was originally published on Nov 11, 2003
Get the Latest Scoop with Networking Update Newsletter