sage of LDAP for managing users and resources in a computer network
Independent thesis Advanced level (degree of Master (Two Years)), 20 credits / 30 HE creditsStudent thesis
Today most organizations keep several separated information directories in which for example computer passwords, e-mail addresses, telephone numbers etc. are stored. A big problem is that much of the information is stored in more than one of the directories and thus it is easy for inconsistencies to develop between the directories. A solution to the problem is to store the information only once - in a central directory server where client applications could access it. LDAP is a protocol used by clients to retrieve information from a directory server.
This report describes how an LDAP directory may be used to share user data in a computer network. First the concept of distributed directory information is presented. Then LDAP is carefully described and compared with X.500, a larger and more complex service. After that we look at the possibility to implement LDAP when developing own systems. Deployment issues and available LDAP products are discussed. A project demo system is presented and described. The demo system shows how different systems can share user information stored in an LDAP directory and how operating systems may be migrated with the directory. One of the more important parts of the system is a gateway server, forwarding NIS requests to the LDAP directory.
The goal of the report is to make the reader aware of distributed directory services and what important role they probably will have in the near future.
Place, publisher, year, edition, pages
1997. , 72 p.
IdentifiersURN: urn:nbn:se:kth:diva-96534OAI: oai:DiVA.org:kth-96534DiVA: diva2:531141
Subject / course
Master of Science in Engineering - Electrical Engineering
1997-12-22, Seminar room "Telegrafen", Isafjordsgatan 22, Kista, 09:00 (English)
Maguire Jr., Gerald Q., professorAlmgren, Hans
Maguire Jr., Gerald Q., professor