Using a Sun or Red Hat DS into a simple LDAP proxy
While Oracle’s Virtual Directory and Sun’s Directory Proxy Server have lots of features that make deploying them worthwhile, if all you need is a simple pass-through LDAP proxy the standard Sun and Red Hat (a/k/a Netscape or 389 Directory) servers support a feature called Chaining that does the job.
Basically chaining involves substituting a remote Sun/Red [...]
An alternative to custom objectclasses: the extensibleobject
I’ve spent a decade designing and implementing LDAP directories, but only recently had the opportunity to reflect on the big picture. For example, the basic structure of the environment originally put in place at the company I work for by the consultants who started things is still there, but as time marched on things [...]
Using OpenLDAP schema in Red Hat Directory
Just the other day I finally got started working on building a real personal address book backend in the home LDAP database. Almost immediately I realized the base schema was going to have to be extended because there were no attributes for date of birth or anniversary, two data points that would be useful to [...]
Cleanup of referrals from old replication agreements in Sun Directory
A brief note on curing an issue I’ve run into on Sun Directory Server. We recently retired a couple of master directories in the environment. After the replication agreements were removed it was noticed that the LDAP referral entries for the old servers were still in place, even though they’d been manually deleted a couple [...]
Learning something new
Back in my MCSE days the main way I learned anything really useful about Microsoft products was by reading every article on the Technet CD every month (and I mean every article). For me, it was just an extension of the disciplines I’d carried over from my legal career. In the latter every day began [...]
Oracle shows how to do it with Sun
From an OBE (Oracle by Example) tutorial recently posted up on Oracle Technology Network, entitled Configuring Oracle WebLogic Server Authentication Using Sun Directory Server:
By default, users, groups, and roles are stored within Oracle WebLogic Server’s embedded Lightweight Directory Access Protocol (LDAP) store, which is hosted on the Administration Server. The authentication is handled internally using [...]
Enabling SSL on CentOS Directory Server
This will be a short post, since the published documentation from Red Hat is excellent and really needs no explaining.
Basically there’s a 5 step process involved in getting the Directory Server to support LDAPS (LDAP over SSL) connections:
1. Create a certificate request;
2. Submit the request to obtain a signed certificate from your CA (Certificate Authority), [...]