In weniger als einer Minute können Sie mit dem Lesen von LDAP System Administration auf Ihrem Kindle beginnen. Sie haben noch keinen Kindle? Hier kaufen oder mit einer unserer kostenlosen Kindle Lese-Apps sofort zu lesen anfangen.

An Ihren Kindle oder ein anderes Gerät senden


Kostenlos testen

Jetzt kostenlos reinlesen

An Ihren Kindle oder ein anderes Gerät senden

Der Artikel ist in folgender Variante leider nicht verfügbar
Keine Abbildung vorhanden für
Keine Abbildung vorhanden

LDAP System Administration [Kindle Edition]

Gerald Carter
3.3 von 5 Sternen  Alle Rezensionen anzeigen (3 Kundenrezensionen)

Kindle-Preis: EUR 21,21 Inkl. MwSt. und kostenloser drahtloser Lieferung über Amazon Whispernet

Kostenlose Kindle-Leseanwendung Jeder kann Kindle Bücher lesen  selbst ohne ein Kindle-Gerät  mit der KOSTENFREIEN Kindle App für Smartphones, Tablets und Computer.

Geben Sie Ihre E-Mail-Adresse oder Mobiltelefonnummer ein, um die kostenfreie App zu beziehen.

Weitere Ausgaben

Amazon-Preis Neu ab Gebraucht ab
Kindle Edition EUR 21,21  
Taschenbuch EUR 24,95  



"This is a clearly written and well structured book with good use of example and figures... I thoroughly commend the text to those who are looking to centralise information directories." - Raza Rizvi, news@UK, December 2003


Be more productive and make your life easier. That's what LDAP System Administration is all about.System administrators often spend a great deal of time managing configuration information located on many different machines: usernames, passwords, printer configurations, email client configurations, and network filesystem configurations, to name a few. LDAPv3 provides tools for centralizing all of the configuration information and placing it under your control. Rather than maintaining several administrative databases (NIS, Active Directory, Samba, and NFS configuration files), you can make changes in only one place and have all your systems immediately "see" the updated information.Practically platform independent, this book uses the widely available, open source OpenLDAP 2 directory server as a premise for examples, showing you how to use it to help you manage your configuration information effectively and securely. OpenLDAP 2 ships with most Linux® distributions and Mac OS® X, and can be easily downloaded for most Unix-based systems. After introducing the workings of a directory service and the LDAP protocol, all aspects of building and installing OpenLDAP, plus key ancillary packages like SASL and OpenSSL, this book discusses:

  • Configuration and access control
  • Distributed directories; replication and referral
  • Using OpenLDAP to replace NIS
  • Using OpenLDAP to manage email configurations
  • Using LDAP for abstraction with FTP and HTTP servers, Samba, and Radius
  • Interoperating with different LDAP servers, including Active Directory
  • Programming using Net::LDAP
If you want to be a master of your domain, LDAP System Administration will help you get up and running quickly regardless of which LDAP version you use. After reading this book, even with no previous LDAP experience, you'll be able to integrate a directory server into essential network services such as mail, DNS, HTTP, and SMB/CIFS.


Mehr über den Autor

Entdecken Sie Bücher, lesen Sie über Autoren und mehr

Welche anderen Artikel kaufen Kunden, nachdem sie diesen Artikel angesehen haben?


3.3 von 5 Sternen
3.3 von 5 Sternen
Die hilfreichsten Kundenrezensionen
12 von 12 Kunden fanden die folgende Rezension hilfreich
1.0 von 5 Sternen Nicht das gewohnte O'Reilly Niveau 19. April 2005
Leider kann dieses Buch den gewohnten O'Reilly Standard nicht halten, die Aufbereitung des Themas ist vor allem didaktisch nicht gelungen. LDAP ist von sich her keine Zauberei und prima dazu geeignet, anhand einfacher Beispiele ebenso einfach und konkret erarbeitet zu werden. So verliert man die Scheu und kann mit einem gewissen Grundverständnis die Angelegenheit in einen abstrakten Zusammenhang einordnen. Der Autor vermengt leider konkrete Beispiel zu früh mit zunächst abschreckender Terminologie und Abstraktion, was den Leser dazu bringt, mehr hinter LDAP zu vermuten als tatsächlich dahinter steckt und seine Lern-Motivation schnell sinken lässt. Für Anfänger ist das Buch nicht geeignet, er wird sein Heil in den im Netz umherschwirrenden Dokumentationen finden müssen.
War diese Rezension für Sie hilfreich?
2 von 4 Kunden fanden die folgende Rezension hilfreich
4.0 von 5 Sternen Nicht für Blutige Anfänger! 4. März 2006
Ich müsste einen Vortrag für meine Ausbildung über OpenLDAP halten, und somit bin ich an dieses Buch gekommen!
Als Neuling in Sachen LDAP ist es vielleicht nicht zu empfehlen!
Aber wer schon mit LDAP gearbeitet hat für den wird dieses Buch bestimmt sehr interessant sein.
Das einigste was mir nicht gefallen hat ist das oreilly dieses Buch NUR in englisch anbietet!
Wer also mit LDAP schon was zutun hatte und nicht vor englisch zurückschreckt für den ist das Buch genau das richtige!
War diese Rezension für Sie hilfreich?
0 von 2 Kunden fanden die folgende Rezension hilfreich
5.0 von 5 Sternen tolles Fachbuch 8. Oktober 2012
Format:Taschenbuch|Verifizierter Kauf
Bücher dieses Verlages überzeugen durchweg durch eine klare Struktur und bringen das zu vermittelnde Thema auf den Punkt an den Mann. Auch von diesem Werk bin ich begeistert.
War diese Rezension für Sie hilfreich?
Die hilfreichsten Kundenrezensionen auf (beta) 3.7 von 5 Sternen  30 Rezensionen
33 von 35 Kunden fanden die folgende Rezension hilfreich
3.0 von 5 Sternen Great basic implementation ideas, lacking in some areas 18. Juli 2004
Von Chris Miller - Veröffentlicht auf
The book starts with a section on a brief introduction of LDAP before moving in LDAPv3 overview. OpenLDAP takes two chapters, then a section of chapters on Application Integration. Letting LDAP replace NIS, integrating with email, Unix and LDAP, LDAP interoperability and LDAP and Perl finish the chapters off. There are some appendixes that include some of the common Attributes and Objects also.
If you are using Windows and some LDAP application this book does not contain a lot of information for you specific to the OS, but is a great reference for LDAP overall. Most of the code examples rely on Unix understandings. The review of access and OpenLDAP applies directly to numerous systems in understanding how rights are applied.
Replication and referrals is a great topic that is covered well for the beginner. For someone wanting advanced architecture ideas and designs, this chapter does not go deep enough for you. But I enjoyed it still letting me review and pick up a few items I was unaware of.
LDAP administrators that are just starting out, or even ones that have been doing LDAP for some time and need to secure or expand the directory infrastructure could benefit from this book.
21 von 22 Kunden fanden die folgende Rezension hilfreich
4.0 von 5 Sternen LDAP System Administration review 15. April 2005
Von Bill Strosberg, CISSP - Veröffentlicht auf
This book provides a good introduction to implementing OpenLDAP. I found the authors "jumped" tangentially around quite a bit topically, rather than following an idea from start to finish. It was a bit disconcerting following the examples and being interrupted with background material constantly. This may be an editorial problem, as usually backreferences to material are enclosed in callout boxes, while the topical flow continues.
I was surprised at the editing and presentation - it wasn't up to usual O'Reilly standards. I was disappointed with the lack of schema level information - part of what I wanted from the book was an understanding of merging multiple schemas to provide cross -client compatibility of directory service usage - i.e. how can LDAP provide services compatible with Mozilla, Eudora, Outlook etc. with common data storage.
All in all, I learned a lot from this book, but I am still needing more material to complete the project I am working on - I'll have to find better documentation on schema considerations. Worth the price, but in need of better editing and a new edition.
21 von 23 Kunden fanden die folgende Rezension hilfreich
2.0 von 5 Sternen "Lightweight" LDAP book 23. Februar 2004
Von Ein Kunde - Veröffentlicht auf
Format:Taschenbuch|Verifizierter Kauf
First of all, be advised that this book only covers OpenLDAP. Although this was exactly what I was using, it makes more sense for the book to be retitled so as not to set the wrong expectations. Now, I'll talk about what this book does well.
The book does an adequate job of explaining the whole installation process. It actually does miss the fact that when installing LDAP, you need to set two environment variables if your Berkeley DB location is non-standard. After a little searching, I found this on the web. Along these lines, it was good with explaining what your directory structure would look like after your install (which is helpful, as OpenLDAP blasts things all over the place) and how to start and stop the server. It also mentions various ways to set security levels and hashing techniques to make sure that your password is not stored in cleartext. So why only two stars?
The overall theme of this book is that it is extremely light on information. If you're the kind of person that likes a little handholding, do NOT get this book! On almost every topic, you'll be left saying, "Okay, where's the next example on this topic?", only to be left hanging. Creating custom schemas was covered in TWO pages (pgs 95-97)! There's no mention of integrating LDAP with the various app servers out there today (Java Servlet/Bean containers, PHP, ASP, etc.). None! Again, I had to search the web to find out how to do this. This led me to binding errors that, once again, the book did not address. Again (this will be a recurring theme), I found the answers on the net.
I hate to say it but there is nothing that this book provides that can not be found on the web very easily. It doesn't provide that golden nugget that you couldn't find anywhere else. Within a week, you'll have scrubbed it for all it's worth and will rely 100% on the web for info that the book should provide. Which brings up another point. It's annoying to spend nearly $30 on a book to constantly have the author tell you "For more information on this subject, look at reference..."). On two separate occasions I found myself saying, "Wait a minute! Why should I need another reference book for basic LDAP info? I thought I bought an LDAP book already!"
Trust me guys, this book is not worth buying at any price. I'm looking to sell mine now!
16 von 17 Kunden fanden die folgende Rezension hilfreich
5.0 von 5 Sternen Best LDAP admin book I have seen 7. November 2006
Von James May - Veröffentlicht auf
Format:Taschenbuch|Verifizierter Kauf
This excellent book covers implementing and administering LDAP better than any I have seen. It's apparent to me that a great deal of thought has gone into key paragraphs. Despite some comments to the contrary, the organization is methodical and logical. Throughout the book there are references to other sources to further research related topics.

Chapter 1 LDAP is defined and you are pointed to the appropriate RFC's.

Chapter 2 is an overview of the LDAPv3 and explains very well the format of the LDIF directory data/structure files. Incidentally, I found that this book enhanced my understanding of Microsofts Active Directory which encompasses among other things LDAPv3.

Chapter 3 familiarizes you with the slapd.conf file and the example uses an SSHA hashed rootpw (an OpenSSL algorithm) and introduces you to the use of ACL's in this server config file.

Chapter 4 leads you through building a company white pages using the command line (which you certainly should know how to do even if you are a GUI fan); the chapter concludes with a brief list of GUI editors for the faint of heart.

Chapter 5 explains replicating to a backup LDAP server with slurpd, enhanced backups using generated LDIF files and distributing the directory to maximize network traffic efficiency. Additions, deletions and modifications to the database are illustrated. Searching is briefly, but concisely explained.

Chapter 6 begins Part II, application integration. The Pluggable Authentication module pam_ldap and it's configuration file, ldap.conf are discussed and there is a list of ldap.conf parameters with explanations. Replacing NIS with LDAP is covered in this chapter. Chapter 6 ends with a brief overview of security mechanisms in LDAPv3.

Chapter 7 presents LDAP as a directory storing email addresses and other contact information. Configuration examples for connection 4 popular email clients are included. Integration with 3 popular MTA's (postfix, sendmail and Exim) round out the chapter.

Chapter 8 introduces integration of network services other than authentication and email with LDAP. Among other things, DNS, printing and Samba LDAP integration are discussed.

Chapter 9 has a few valuable pointers in interoperability with other platforms, specifically Windows 2000 Active Directory. Digital certificates and Kerberos authentication on the Windows platform as relating to *nix are very briefly discussed.

Chapter 10, Net::LDAP and Perl gives a mainly informational overview of connecting, binding and searching and contains sample scripts using the Net::LDAP module. It also demonstrates adding, updating and deleting entries using Perl scripts instead of the LDIF methods earlier in the book. Note, however that this is not a book about programming; it is a book about LDAP Administration.

Lastly, this book does need an update. Some modules which were separate entities not so long ago are now symbolic links; for example:

/usr/local/sbin/slapacl -> slapd
/usr/local/sbin/slapadd -> slapd
/usr/local/sbin/slapauth -> slapd
/usr/local/sbin/slapcat -> slapd
/usr/local/sbin/slapdn -> slapd
/usr/local/sbin/slapindex -> slapd
/usr/local/sbin/slappasswd -> slapd
/usr/local/sbin/slaptest -> slapd
Even the best needs to be updated; and when it is I will be one of the first to purchase it.

LDAP protocol will very likely solve the complex problem of redundant authentication/authorization data spread across heterogenous networks. However, whether your users access resources through passwords or some other mechanism one thing stands out.

If your security database resides in one place, it must be secured and precautions taken that authentication data traversing the network cannot be sniffed or otherwise compromised. In general, most admins accomplish this by encryption using SSH/SSH2 or OpenSSH.

OpenSSH, in turn uses the encryption libraries of OpenSSL so it's a required dependency.

To summarize, IMHO: LDAP is only 1 part of the solution and this book covers it better than any other I have seen. No single reference will cover all the bases and like any well written book this one keeps the focus on the major subject of LDAP, but offers references to other related topics.

Above my workstation is a wooden shelf containing my most important references; this is one of them. I have found the following volumes very helpful and LDAP plays well with these technologies.

"LDAP System Administration" by Gerald Carter.

"SSH The Secure Shell, The Definitive Guide" by Daniel J. Barrett, Richard E. Silverman & Robert G. Byrnes.

"Network Security with OpenSSL" by John Viega, Matt Messier & Pravir Chandra.

"Kerberos: The Definitive Guide" by Jason Garman

These 4 volumes will help you both in securing your network and making it more productive and accessable to authorized users. These volumes complement each other.

If you need guidance for software development, you might try "Secure Programming Cookbook for C and C++" by John Viega and Matt Messier

Definitely Five stars - even though it does need updating.

This book fills a knowledge void and can make your life a lot easier. It can save you hours of Google searches, searching forums, pumping your friends for tips, trial and error, and grep'ing log files; this one deserves a slot in your special library.
13 von 15 Kunden fanden die folgende Rezension hilfreich
4.0 von 5 Sternen very helpful 20. Mai 2003
Von Ein Kunde - Veröffentlicht auf
I spent months trying to gather information from the web about integrating services (MTA's, Samba, Radius, etc) with an LDAP server. This book gathers all that information into one well written book. It also covers basics which are surprisingly hard to get straight answers for on the web.
It pretty much exclusively talks about implementations using OpenLDAP. This was fine for me since it's what I'm using, but keep it in mind that not all information will be correct for your LDAP server (ACL's for instance)
I really wish I had this book when I started implementing LDAP. All the other books I bought wasted hundreds of pages talking about theory and developing applications for LDAP. This is the first book I've found that actually talks about USING LDAP.
Some sections feel a little unfinished. It could be a bit more detailed in areas and more discussion of the bumps you'll hit in an actual implemenation.
Even with the books minor problems, this book will pay for itself in the time it saves you from having to scour the web and mailing lists for answers. You'll still occasionally have to resort to the web and man pages to fill in the gaps. Hopefully the second edition will be more detailed.
Waren diese Rezensionen hilfreich?   Wir wollen von Ihnen hören.
Kundenrezensionen suchen
Nur in den Rezensionen zu diesem Produkt suchen

Kunden diskutieren

Das Forum zu diesem Produkt
Diskussion Antworten Jüngster Beitrag
Noch keine Diskussionen

Fragen stellen, Meinungen austauschen, Einblicke gewinnen
Neue Diskussion starten
Erster Beitrag:
Eingabe des Log-ins

Kundendiskussionen durchsuchen
Alle Amazon-Diskussionen durchsuchen

Ähnliche Artikel finden