Sun Blueprints LDAP in the Solaris Operating Environment: Deploying Secure Directory Services
Be the First to Write a Review and tell the world about this title!Books on similar topics, in best-seller order: Books from the same publisher, in best-seller order:
LDAP in the Solaris Operating Environment Deploying Secure Directory Services
- Provides an in-depth discussion of Solaris Operating Environment security
methods and how they relate to LDAP as a naming service
- Covers migration planning tips from NIS/NIS+ to an LDAP-based naming service
including capacity planning
- Presents an overview of LDAP tools and toolkits, and how they are used to
administer LDAP as a naming service
- Discusses performance principles and benchmarking techniques for optimizing
directory server performance
LDAP in the Solaris Operating Environment is a follow-on to the Sun
BluePrints book Solaris and LDAP Naming Services, and describes the significant
improvements to the Solaris LDAP client and directory server. Deploying the
Solaris Secured LDAP Client is covered in detail. This Sun BluePrints book introduces
NIS/NIS+ migration tools and techniques to aid in the transition to an LDAP-based
naming service. Troubleshooting tips, examples of extending Solaris authentication
methods, and examples of extending Solaris authentication methods using the
Pluggable Authentication Module (PAM) framework are provided.
Table of Contents
Acknowledgments.
Preface.
1. Introducing LDAP in the Solaris Operating Environment.
Introduction. The Big Picture. LDAP Terms and
Concepts.
2. Assessing Your Needs for Naming Service Transition and Consolidation.
What Consolidation Means. Business Case for Transitioning
to LDAP. Understanding Legacy Naming Services. Migration Planning.
3. Defining Directory Service Security Architecture.
Understanding Directory Server Security. Understanding
the SASL Mechanism. GSSAPI Authentication and Kerberos v5. TLSv1/SSL Protocol
Support. Enhanced Solaris OE PAM Features. Secured LDAP Client Backport to the
Solaris 8 OE.
4. Deploying Solaris OE LDAP Naming Services.
Understanding the DIT. Differentiating Server
and Client Versions. Configuring Sun ONE Directory Servers and Clients. Automating
Installations. Choosing High-Availability Options. Troubleshooting Tips.
5. Migrating Legacy Data to LDAP.
Mapping Naming Service Data to LDAP Entries.
Running ldapaddent. Importing Other Databases. LDAP to NIS+ Gateway.
6. Management Tools and Toolkits.
Command-Line Tools. GUI-based Tools. Toolkits
and LDAP APIs.
7. Performing Administrative Tasks.
Identifying Directory Management Tasks. Directory
Data Backup and Recovery. Managing Client Profiles and Proxy Agent Accounts.
Managing Directory Data Replication. Monitoring Directory Services. Managing
Users and Groups. Extending the Directory Schema.
8. Selecting Storage for Optimum Directory Server Performance.
Software Characteristics. Survey of Sun Storage
Subsystems. Introduction to the Sun StorEdge T3b Storage Array. RAID Explained
for Directory Administrators.
9. Performing Directory Server Benchmarks.
Why Benchmark? Creating a Benchmark Configuration.
Creating LDIF for Benchmarks. Using SLAMD, the Distributed Load Generation Engine.
Directory Server Performance Tuning.
10. Emerging Directory Technologies.
DSMLv2 Interface. Sun ONE Identity Synchronization
for the Windows Technology. NIS to LDAP Gateway.
A: LDAP Standards Information.
B: LDAP v3 Result Codes.
C: Using snoop with LDAP.
D: Solaris OE 9 PAM Architecture.
Glossary.
Index.
About the Authors
MICHAEL HAINES is a staff engineer in the Enterprise Services Engineering group
at Sun Microsystems. He has been at Sun Microsystems for 10 years and started
his career in the CTE Engineering Group. Since then he has held various engineering
positions within Sun Microsystems.
TOM BIALASKI joined Sun Microsystems in 1984 as a Systems Engineer and has been
providing network computing solutions to customers since then. He is currently
a PC interoperability specialist and has recently received his MCSE certification
from Microsoft.
|
