Using a Sun or Red Hat DS into a simple LDAP proxy

While Oracle’s Virtual Directory and Sun’s Directory Proxy Server have lots of features that make deploying them worthwhile, if all you need is a simple pass-through LDAP proxy the standard Sun and Red Hat (a/k/a Netscape or 389 Directory) servers support a feature called Chaining that does the job.
Basically chaining involves substituting a remote Sun/Red [...]

March 2nd, 2010 by Phil Lembo 
Comments Off - Read More...

An alternative to custom objectclasses: the extensibleobject

I’ve spent a decade designing and implementing LDAP directories, but only recently had the opportunity to reflect on the big picture. For example, the basic structure of the environment originally put in place at the company I work for by the consultants who started things is still there, but as time marched on things [...]

February 28th, 2010 by Phil Lembo 
Comments Off - Read More...

Using OpenLDAP schema in Red Hat Directory

Just the other day I finally got started working on building a real personal address book backend in the home LDAP database. Almost immediately I realized the base schema was going to have to be extended because there were no attributes for date of birth or anniversary, two data points that would be useful to [...]

February 28th, 2010 by Phil Lembo 
Comments Off - Read More...

Cleanup of referrals from old replication agreements in Sun Directory

A brief note on curing an issue I’ve run into on Sun Directory Server. We recently retired a couple of master directories in the environment. After the replication agreements were removed it was noticed that the LDAP referral entries for the old servers were still in place, even though they’d been manually deleted a couple [...]

February 17th, 2010 by Phil Lembo 
Comments Off - Read More...

Learning something new

Back in my MCSE days the main way I learned anything really useful about Microsoft products was by reading every article on the Technet CD every month (and I mean every article). For me, it was just an extension of the disciplines I’d carried over from my legal career. In the latter every day began [...]

December 14th, 2009 by Phil Lembo 
Comments Off - Read More...

Oracle shows how to do it with Sun

From an OBE (Oracle by Example) tutorial recently posted up on Oracle Technology Network, entitled Configuring Oracle WebLogic Server Authentication Using Sun Directory Server:
By default, users, groups, and roles are stored within Oracle WebLogic Server’s embedded Lightweight Directory Access Protocol (LDAP) store, which is hosted on the Administration Server. The authentication is handled internally using [...]

November 24th, 2009 by Phil Lembo 
Comments Off - Read More...

Enabling SSL on CentOS Directory Server

This will be a short post, since the published documentation from Red Hat is excellent and really needs no explaining.
Basically there’s a 5 step process involved in getting the Directory Server to support LDAPS (LDAP over SSL) connections:
1. Create a certificate request;
2. Submit the request to obtain a signed certificate from your CA (Certificate Authority), [...]

November 2nd, 2009 by Phil Lembo 
Comments Off - Read More...
Older Posts »