Linux® Quick Fix

NIS was one of the first, but it doesn't encrypt the password transaction. It also uses the portmapper daemon, which uses an unpredictable range of TCP ports that are difficult for firewalls to track. LDAP (Lightweight Directory Access Protocol) prov...

Like X.500, LDAP directory entries are arranged in a tree structure. Under the root, there are branches that represent countries, organizations, organizational units, and people. In complicated LDAP deployments, in which you have to exchange informa...

These concepts are easier to explain when working from an example, so imagine the IT department in a small organization called example.com has many Linux servers it needs to administer. The company wants a simple, secure, centralized login scheme fo...

1.22-8.i386.rpm. (For more detail on downloading and installing, see Chapter 6, "Installing RPM Software.") Required LDAP Server RPMs Make sure these required LDAP Server RPMs are installed on your LDAP server: openldapopenldap-clients...

The first stage of the project is to correctly configure the LDAP server. To do so, you must create an LDAP database into which you import the /etc/passwd file. Take a closer look at the steps. Create a Database Directory Fedora LDAP defaults to ...

conf Configuration File LDAP clients are configured using the /etc/openldap/ldap.conf file. You need to make sure that the file refers to the LDAP server's IP address for the domain example.com. The file should look like this: HOST 192.168.1...

The secure tunnel (stunnel) utility can be used to intercept regular LDAP communications and encrypt them over an SSL tunnel using the TCP port of your choice. Fortunately, stunnel is installed by default on Fedora Linux, making it even easier to use...

Here are some steps you can take to help you sleep better at night. Test Using ldapsearch Always run the ldapsearch command on both the LDAP client and server to test your LDAP configuration: [root@smallfry tmp]# ldapsearch -x -b 'dc=example,d...

Here are some explanations of how to do many common LDAP tasks. They are all based on our sample organization with DNs of example and com. Note You need to always make sure that there are no entries for regular users in the /etc/passwd files of t...

Many network equipment manufacturers use an authorization scheme called RADIUS to filter the types of activities a user can do. The Linux FreeRADIUS server can be configured to talk to a Linux LDAP server to handle login authentication services. In o...

For example in hot spots, ISPs will sacrifice data security for the sake of convenience by not using encryption, but will use LDAP to restrict access to the Internet to people who have purchased pre-paid access codes with a predefined lifetime. Chap...