LDAP Browser and SSL
For the most part getting Jarek Gawor’s LDAP Browser-Editor (LBE) to work with SSL-enabled LDAP, or LDAPS, is no big deal. Most of the time it will simply retrieve the server’s SSL certificate and then import it into a hidden keystore.
Sometimes, however, you’ll get this error when trying to connect over LDAPS:
“CA certificate is not [...]
Enabling LDAPS over LDAP in OpenLDAP
I found getting LDAPS enabled in the latest OpenLDAP packages a bit more complicated than it should have been. The main reason for this is that, starting with 8.04 LTS, the Ubuntu developers decided to begin compiling OpenLDAP’s slapd using the gnutls libraries instead of the intergalactic standard, openssl. I will refrain from my usual [...]
Configuring OpenLDAP over LDAP
OpenLDAP has featured the ability to configure the server over LDAP for some time now using the cn=config node. This replaces the slapd.conf file that most are familiar with. While Red Hat continues to ship the slapd server with a slapd.conf file, Ubuntu 8.10 ships openldap 2.4 .11 with cn=config enabled. If you install the [...]
Important bug in Net::LDAP::LDIF
Working on my new workstation today, I discovered what to me is an important bug in recent versions of perl-ldap (a/k/a Net::LDAP).
The problem is with the current_lines method in LDIF.pm, which is supposed to allow you to dump all lines of an LDIF entry to STDOUT or another filehandle. Basically the 0.18 version of LDIF.pm [...]
CentOS Directory Server
The CentOS team has been repackaging Red Hat’s Directory Server for some time now. The packages, rebranded as the “CentOS Directory Server”, can be found over in the Testing repository for the latest (CentOS 5) version under the RPMS directory for the target architecture (for example, x86_64 packages would be found here.
There’s a How To [...]
Apache Directory Studio
Apache Directory Studio has been out there for awhile, but now that it’s up to version 1.3 RC2, I’ve decided to go full immersion with it and see just what can be done.
Based on the Eclipse IDE, the product is basically a complete LDAP development toolkit that includes a client browser/editor (could this replace Jarek [...]
Parsing an LDAP schema with Net::LDAP::Schema
Being able to parse the LDAP schema is something that can come in handy at times. For example, many years ago I wrote a cgi script to display our entire production schema for my company’s user administration and development teams. Recently we needed to generate a .csv file to do the same thing.
Net::LDAP::Schema has gone [...]