LDAP directory#

LDAP#

(Lightweight Directory Access Protocol) Directory service Protocol describing both a data model and how to query and modify this data.

A LDAP directory is a kind of database with a hierarchical, tree-like structure, allowing to link information to names. Generally, accounts or groups of users or computers belonging to an organization.

The data schema is not fixed, so you need to know it before you can interact with a LDAP directory.

CLUB1 uses a LDAP directory to store its member accounts centrally. This allows to share the login credentials between the different member services.

Configuration details#

This section describes the specificities of the CLUB1 configuration.

graph LDAP {
graph [size = "2.5,2.5"]
node [fontname = "monospace"]

"dc=fr" -- "dc=club1"
"dc=club1" -- "ou=People"
"dc=club1" -- "ou=Group"
"ou=People" -- "uid=*"
} — Fig. 5.1 LDAP data schema#

Connection information#

The LDAP directory of CLUB1 is not public, it is only available locally from the server.

field	value
host	`localhost`
port	`389` (default)
TLS	no

Software#

slapd#: LDAP directory server part of the OpenLDAP project, a free implementation of the LDAP protocol. — Wikipedia, Sources

nss-pam-ldapd#: Package providing a server (nslcd) to connect the LDAP directory to the system’s services. More specifically, the authentication module (PAM) and the data source management service (NSS). — Site, Sources