Apache Directory Studio, Part 2
After putting it aside for awhile, I decided to take a more serious look at Apache Directory Studio (ADS).
My main motivation was the disappearance of all free links to Jarek Gawor’s LDAP Browser/Editor tool, and my resulting inability to recommend it to others. A secondary, but still important, motivation was to find something a bit [...]
stupid sudo tricks
I love sudo. I really do. Anyone whose directory environment is on Unix and don’t have root should learn it, love it and use it. Big Time.
Basically what sudo does is allow authorized users to invoke specified commands as root.
Because most directory servers operate on port 389, the usual Unix rule limiting the opening of [...]
LDAP Browser and SSL
For the most part getting Jarek Gawor’s LDAP Browser-Editor (LBE) to work with SSL-enabled LDAP, or LDAPS, is no big deal. Most of the time it will simply retrieve the server’s SSL certificate and then import it into a hidden keystore.
Sometimes, however, you’ll get this error when trying to connect over LDAPS:
“CA certificate is not [...]
Enabling LDAPS over LDAP in OpenLDAP
I found getting LDAPS enabled in the latest OpenLDAP packages a bit more complicated than it should have been. The main reason for this is that, starting with 8.04 LTS, the Ubuntu developers decided to begin compiling OpenLDAP’s slapd using the gnutls libraries instead of the intergalactic standard, openssl. I will refrain from my usual [...]
Important bug in Net::LDAP::LDIF
Working on my new workstation today, I discovered what to me is an important bug in recent versions of perl-ldap (a/k/a Net::LDAP).
The problem is with the current_lines method in LDIF.pm, which is supposed to allow you to dump all lines of an LDIF entry to STDOUT or another filehandle. Basically the 0.18 version of LDIF.pm [...]
Oracle Internet Directory with 10 million entries
This is an old (circa A.D. 2000) article on O’Reilly’s site, Putting Oracle Internet Directory Through Its Paces.
Our directory implementation would consist of a shallow, wide tree with a single parent node… The telephone numbers form the leaf nodes of the tree, upon which various object classes would hang. A single access-control attribute at the [...]
Querying a Real LDAP Directory with VBScript
See Rob’s latest post, How to Query Sun One LDAP with VBScript for code you won’t find anywhere else.
This article provides a clearly written sample script that shows how to: 1) bind (authenticate) to a non-Microsoft LDAP directory; and 2) search using a standard LDAP query filter in order to return the values of attributes [...]