Sunday, August 15, 2010
0
Let LinuxCBT feat. OpenLDAP Edition cost-effectively teach you Linux | Unix directory skills.
Let LinuxCBT feat. OpenLDAP Edition cost-effectively teach you Linux | Unix directory skills.
Recommended Prerequisites for:
- Any LinuxCBT Operating System Course (Classic/EL-4|5/SUSE/Debian Editions)
- Open mind & determination to master Linux and related open-source applications
LinuxCBT OpenLDAP Edition
LinuxCBT feat. OpenLDAP Edition focuses on the common Linux | Unix directory services application: OpenLDAP. It is a module of LinuxCBT Directory Services Edition.
OpenLDAP provides a lightweight, central information directory service for countless applications, including general user authentication services. This results in reduced administrative overhead. OpenLDAP also supports replication and encryption, promoting high-availability and security. Furthermore, knowledge of OpenLDAP prepares you to work comfortably with Open Source and commercial LDAP variants.
Let LinuxCBT feat. OpenLDAP Edition cost-effectively teach you Linux | Unix directory skills.
Recommended Prerequisites for:
* Any LinuxCBT Operating System Course (Classic/EL-4|5/SUSE/Debian Editions)
o Open mind & determination to master Linux and related open-source applications
o Access to a Linux or Solaris system to follow the exercises
o Open mind & determination to master Linux and related open-source applications
o Access to a Linux or Solaris system to follow the exercises
LinuxCBT feat. OpenLDAP Edition
* Introduction - Features
o Discuss LDAP history
o Enumerate key features
o Discuss typical LDAP applications
o Compare and contrast LDAP namespace to DNS namespace
o Discuss key offline|online administrative tools
o Identify key systems to be used
*
* LDAP Concepts
o Explore target Directory Information Tree (DIT)
o Discuss Distinguished Names (DNs)
o Directory Information Tree (DIT)
o Discuss Object Classes
o Discuss Attributes
o Discuss the importance of Schemas
o Explain how LDAP interacts with PAM and NSS to authenticate users
*
* Master Server Configuration
o Explore PAM and NSS configuration
o Install and explore OpenLDAP packages
o Configure Master server to serve the default LDAP namespace
o Initiate LDAP server
*
* Define Directory Information Tree (DIT)
o Search the default DIT using 'ldapsearch'
o Update /etc/hosts files with participating LDAP servers
o Use LDAP Browser GUI to explore LDAP DIT
o Explain LDIF entries
o Create the top-level LDAP DIT container object using 'ldapadd' with LDIF file
o Create second-level Organizational Units (OUs) for functional groups
o Create users within each second-level OU
o Verify results
o Attempt to create duplicate entries
*
* Configure Replication
o Discuss features and benefits
o Explore network topology
o Install required packages on LDAP replication partner (replica)
o Enumerate and execute replication configuration steps
o Evaluate results on master and replica LDAP servers
*
* LDAP on Solaris Configuration
o Discuss features and benefits
o Download and install LDAP and required packages
o Update /etc/hosts configuration on replica
o Configure server as LDAP replica
o Verify results
*
* LDAP Add
o Discuss features and benefits
o Explain 'ldapadd' usage
o Add users to remaining OUs
o Verify results
o Use 'ldapadd' with: STDIN and LDIF file
o Use 'ldapadd' from replica
o Evaluate results using 'ldapsearch' and LDAP Browser GUI
*
* LDAP Delete
o Discuss features and benefits
o Explain 'ldapdelete' usage
o Delete specific LDAP objects remotely
o Evaluate results
o Delete multiple LDAP objects using STDIN and LDIF
o Evaluate results
o Use 'ldapsearch' to derive applicable LDIF statements
o Attempt to delete non-existing and existing items
o Evaluate results using: 'ldapsearch' and LDAP Browser GUI
*
* LDAP Modify
o Discuss features and benefits
o Confirm current state of DIT on master and replicas using 'ldapsearch'
o Rebuild the DIT using 'ldapmodify'
o Confirm results with LDAP Browser GUI
o Modify attributes using 'ldapmodify' with LDIF
o Delete objects using 'ldapmodify'
o Evaluate results
*
* LDAP Search
o Discuss features and benefits
o Discuss supported boolean operators
o Discuss filter operators
o Use wildcards in searches
o Peform string searches
o Search distinct OUs for all object types
o Search the DIT for OUs
o Search the DIT for specific attributes
o Search the DIT for specific user objects
o Perform boolean searches
o Evaluate results
*
* Logging
o Discuss features and applications
o Explore master server logging and syslog configuration
o Discuss debugging levels
o Start LDAP server in desired debug level
o Evaluate results
o Vary logging verbosity
o Configure logging on replica server
o Evaluate results
*
* LDIF
o Discuss features and benfits
o Use 'ldapsearch' to explore LDIF entries
o Discuss LDIF structure
o Discuss key object types
o Create a new user object using LDIF
o Delete using LDIF
o Modify using LDIF
o Evaluate results
*
* LDAP Schemas
o Discuss features and benefits
o Explain applicability
o Examine 'slapd.conf'
o Explore default schema files on master and replica servers
o Correlate schemas to LDIF entries
*
* Migrate to LDAP Authentication
o Discuss features and benefits
o Migrate primary server to LDAP authentication
o Confirm configuration
o Migrate replica servers to LDAP authentication
o Evaluate results
o Migrate local users from master and replica servers to LDAP DIT
o Confirm results using 'ldapsearch'
o Confirm authentication of LDAP users on master and replica servers
o Migrate other useful Linux|Unix tables
*
* Syncrepl Replication
o Discuss features and benefits
o Migrate from 'slurpd' to 'syncrepl'
o Evaluate results
*
* LDAP Security
o Discuss features and benefits
o Explore Access Control Lists (ACLs)
o Configure SSL/TLS encryption
o Evaluate results
o Discuss LDAP history
o Enumerate key features
o Discuss typical LDAP applications
o Compare and contrast LDAP namespace to DNS namespace
o Discuss key offline|online administrative tools
o Identify key systems to be used
*
* LDAP Concepts
o Explore target Directory Information Tree (DIT)
o Discuss Distinguished Names (DNs)
o Directory Information Tree (DIT)
o Discuss Object Classes
o Discuss Attributes
o Discuss the importance of Schemas
o Explain how LDAP interacts with PAM and NSS to authenticate users
*
* Master Server Configuration
o Explore PAM and NSS configuration
o Install and explore OpenLDAP packages
o Configure Master server to serve the default LDAP namespace
o Initiate LDAP server
*
* Define Directory Information Tree (DIT)
o Search the default DIT using 'ldapsearch'
o Update /etc/hosts files with participating LDAP servers
o Use LDAP Browser GUI to explore LDAP DIT
o Explain LDIF entries
o Create the top-level LDAP DIT container object using 'ldapadd' with LDIF file
o Create second-level Organizational Units (OUs) for functional groups
o Create users within each second-level OU
o Verify results
o Attempt to create duplicate entries
*
* Configure Replication
o Discuss features and benefits
o Explore network topology
o Install required packages on LDAP replication partner (replica)
o Enumerate and execute replication configuration steps
o Evaluate results on master and replica LDAP servers
*
* LDAP on Solaris Configuration
o Discuss features and benefits
o Download and install LDAP and required packages
o Update /etc/hosts configuration on replica
o Configure server as LDAP replica
o Verify results
*
* LDAP Add
o Discuss features and benefits
o Explain 'ldapadd' usage
o Add users to remaining OUs
o Verify results
o Use 'ldapadd' with: STDIN and LDIF file
o Use 'ldapadd' from replica
o Evaluate results using 'ldapsearch' and LDAP Browser GUI
*
* LDAP Delete
o Discuss features and benefits
o Explain 'ldapdelete' usage
o Delete specific LDAP objects remotely
o Evaluate results
o Delete multiple LDAP objects using STDIN and LDIF
o Evaluate results
o Use 'ldapsearch' to derive applicable LDIF statements
o Attempt to delete non-existing and existing items
o Evaluate results using: 'ldapsearch' and LDAP Browser GUI
*
* LDAP Modify
o Discuss features and benefits
o Confirm current state of DIT on master and replicas using 'ldapsearch'
o Rebuild the DIT using 'ldapmodify'
o Confirm results with LDAP Browser GUI
o Modify attributes using 'ldapmodify' with LDIF
o Delete objects using 'ldapmodify'
o Evaluate results
*
* LDAP Search
o Discuss features and benefits
o Discuss supported boolean operators
o Discuss filter operators
o Use wildcards in searches
o Peform string searches
o Search distinct OUs for all object types
o Search the DIT for OUs
o Search the DIT for specific attributes
o Search the DIT for specific user objects
o Perform boolean searches
o Evaluate results
*
* Logging
o Discuss features and applications
o Explore master server logging and syslog configuration
o Discuss debugging levels
o Start LDAP server in desired debug level
o Evaluate results
o Vary logging verbosity
o Configure logging on replica server
o Evaluate results
*
* LDIF
o Discuss features and benfits
o Use 'ldapsearch' to explore LDIF entries
o Discuss LDIF structure
o Discuss key object types
o Create a new user object using LDIF
o Delete using LDIF
o Modify using LDIF
o Evaluate results
*
* LDAP Schemas
o Discuss features and benefits
o Explain applicability
o Examine 'slapd.conf'
o Explore default schema files on master and replica servers
o Correlate schemas to LDIF entries
*
* Migrate to LDAP Authentication
o Discuss features and benefits
o Migrate primary server to LDAP authentication
o Confirm configuration
o Migrate replica servers to LDAP authentication
o Evaluate results
o Migrate local users from master and replica servers to LDAP DIT
o Confirm results using 'ldapsearch'
o Confirm authentication of LDAP users on master and replica servers
o Migrate other useful Linux|Unix tables
*
* Syncrepl Replication
o Discuss features and benefits
o Migrate from 'slurpd' to 'syncrepl'
o Evaluate results
*
* LDAP Security
o Discuss features and benefits
o Explore Access Control Lists (ACLs)
o Configure SSL/TLS encryption
o Evaluate results
LinuxCBT feat. OpenLDAP Edition focuses on the common Linux | Unix directory services application: OpenLDAP. It is a module of LinuxCBT Directory Services Edition.
OpenLDAP provides a lightweight, central information directory service for countless applications, including general user authentication services. This results in reduced administrative overhead. OpenLDAP also supports replication and encryption, promoting high-availability and security. Furthermore, knowledge of OpenLDAP prepares you to work comfortably with Open Source and commercial LDAP variants.
Let LinuxCBT feat. OpenLDAP Edition cost-effectively teach you Linux | Unix directory skills.
Recommended Prerequisites for:
- Any LinuxCBT Operating System Course (Classic/EL-4|5/SUSE/Debian Editions)
- Open mind & determination to master Linux and related open-source applications
Subscribe to:
Post Comments (Atom)
0 Responses to “LinuxCBT OpenLDAP Edition”
Post a Comment