[KLUG Members] book suggestions for openldap
Adam Williams
members@kalamazoolinux.org
Mon, 01 Dec 2003 15:38:25 -0500
> I am working on getting a handle on using openldap for user
> authentication for samba/custom php applications/email etc and I was
> hoping to find a good book. In particular I am trying to figure out how
> to use various schema to layout what I need and how to go about getting
> things set up the best way I can figure out.
There isn't much. There is my LDAP presentation -
ftp://ftp.kalamazoolinux.org/pub/pdf/ldapv3.pdf
O'Rielly has a new OpenLDAP System Administration book available. It is
a good book; but I think a lousy "introduction". It fills in alot of gaps
i you already have some idea what your doing. But it may be worth looking
at.
McGraw Hills, now old, Implementing Directory Enabled Networks (tan, with
a cover of a suspension bridge on the cover) covers a lot of good LDAP
theory and WHY, but nothing about OpenLDAP specifically.
Most LDAP documentation is found in the various subsystems; there is
documentation about LDAP/PAM+NSS, LDAP/sendmail, LDAP/SASL, etc... You
need to go to each subsystem you want to directory-enable and look at it's
LDAP extensions.
> Unfortunately my search for openldap at borders yields just references
> from within other books like RH Bible and such. My search at Barnes and
> Noble somehow brought up "Bad Girl's Guide to the Open Road" and
> "Flyboys: A True Story of American Courage"
Those look like fun! Probably more fun than LDAP. I personally prefer
Bad Girl's over Flyboys, but whatever works for you.
> Does anyone have any good suggestions. I guess what I am really looking
> for is a cookbook type book that might walk through setting up some of
> the basic uses of ldap that I can combine into what I want to get done
> explaining along the way a bit more for me.
If you try to go into LDAP via a "cookbook" your steaming down a blind
alley, IMHO. It is really best if you take some time to understand the
directory oriented approach. Obviously this is true of anything, but
LDAP especially, and more so.