Allidm.com
Discovering Identity and Access Management Solutions

Directory Services Introduction
http://academy.allidm.com
Stay connected to Allidm

Find us on Facebook:
http: //www. facebook.com/allidm
Follow us on Twitter:
http: //twitter.com/...
Disclaimer and Acknowledgments

The contents here are created as a own personal endeavor and
thus does not reflect any off...
Contact Us
On this presentation we’ll talk about some useful topics that
you can use no matter which identity and access m...
Introduction

A directory is a collection of information about
objects arranged in some order that gives details
about eac...
What’s a Directory Solution?

A directory is a specialized database, also called a data
repository, that stores typed and ...
Directory Features

A directory service is highly optimized for reads
A directory service implements a distributed model f...
Directory clients and servers

Directories are usually accessed using the
client/server model of communication.
An applica...
Differences Between Directories and
Databases
A directory is often described as a database, but it is a
specialized databa...
What is LDAP?

LDAP is an open industry standard that defines a standard method for
accessing and updating information in ...
Interaction between an LDAP client
and an LDAP server
general interaction between an LDAP client and an
LDAP server takes ...
Interaction between an LDAP
client and an LDAP server
Establish a session
The client establishes a session with an LDAP se...
Interaction between an LDAP
client and an LDAP server
 Perform Operations

The client performs operations on directory da...
Ldap Components

A directory entry usually describes an object such as a
person, a printer, a server, and so on.
Each entr...
What’s LDIF?

Is a standard text file format for storing LDAP
configuration information and directory contents.
LDIF file ...
Why LDIF ?

System administrators prefer to use plain-text files for
server configuration information, as opposed to some
...
Types

An directory server could be installed in the next
ways:
Directory Server
Proxy Server
Replication Gateway
LDAP addresses the problems

Work in process
How LDAP works

In process
What look for an LDAP Solution

Ease of Deploy
Portability
Open Standards
built using open standards and specifications as...
Choosing an LDAP Solution

Work in progress
Keys to Successfully Implementing
LDAP
Distinguish clearly between requirements.
Involve everyone, from the chief executiv...
Road Map

Work in process
LDAP Solutions Around World

Some of the key vendors providing SSO Solutions are
Oracle
CA
Symplified
Forgerock
IBM
Courio...
Allidm.com
Discovering Identity and Access Management Solutions

Allidm Academy
http://academy.allidm.com
Directory Introduction
Upcoming SlideShare
Loading in …5
×

Directory Introduction

1,277 views

Published on

The Identity management solutions required specific skill to successfully deploy it. This presentation will help you to star build some of them.

Published in: Technology
0 Comments
1 Like
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total views
1,277
On SlideShare
0
From Embeds
0
Number of Embeds
6
Actions
Shares
0
Downloads
0
Comments
0
Likes
1
Embeds 0
No embeds

No notes for slide

Directory Introduction

  1. 1. Allidm.com Discovering Identity and Access Management Solutions Directory Services Introduction http://academy.allidm.com
  2. 2. Stay connected to Allidm Find us on Facebook: http: //www. facebook.com/allidm Follow us on Twitter: http: //twitter.com/aidy_idm Look for us on LinkedIn: http: //www. linkedin.com/allidm Visit our blog: http://www.allidm.com/blog
  3. 3. Disclaimer and Acknowledgments The contents here are created as a own personal endeavor and thus does not reflect any official stance of any Identity and Access Management Vendor on any particular technology
  4. 4. Contact Us On this presentation we’ll talk about some useful topics that you can use no matter which identity and access management solution or product you are working on. If you know one that make a big difference please tell us to include it in the future aidy.allidm@gmail.com
  5. 5. Introduction A directory is a collection of information about objects arranged in some order that gives details about each object. Popular examples are a city ,telephone ,directory and a library card catalog.
  6. 6. What’s a Directory Solution? A directory is a specialized database, also called a data repository, that stores typed and ordered information about objects. A directory is a listing of information about objects arranged in some order that gives details about each object. Directories allow users or applications to find resources that have the characteristics needed for a particular task. For example, a directory of users can be used to look up a person’s e-mail address or phone number.
  7. 7. Directory Features A directory service is highly optimized for reads A directory service implements a distributed model for storing information A directory service can extend the types of information it stores A directory service has advanced search capabilities A directory service has loosely consistent replication among directory servers
  8. 8. Directory clients and servers Directories are usually accessed using the client/server model of communication. An application that wants to read or write information in a directory does not access the directory directly. Instead, it calls a function or application programming interface (API) that causes a message to be sent to another process.
  9. 9. Differences Between Directories and Databases A directory is often described as a database, but it is a specialized database that has characteristics that set it apart from general-purpose relational databases.
  10. 10. What is LDAP? LDAP is an open industry standard that defines a standard method for accessing and updating information in a directory. The Lightweight Directory Access Protocol, a standard, extensible Internet protocol used to access directory services The Lightweight Directory Access Protocol (LDAP) defines a message protocol used by directory clients and directory servers.T The LDAP Data Interchange Format (LDIF), a standard text format for exchanging directory data LDAP protocol uses different messages. A searchRequest is used to search for a specific entry in the directory.
  11. 11. Interaction between an LDAP client and an LDAP server general interaction between an LDAP client and an LDAP server takes the following form: Establish a session Perform Operations Finish Session
  12. 12. Interaction between an LDAP client and an LDAP server Establish a session The client establishes a session with an LDAP server known as binding to the server. The client specifies the host name or IP address and TCP/IP port number where the LDAP server is listening. The client can provide a user name and a password to properly authenticate with the server. Or the client can establish an anonymous session with default access rights. The client and server can also establish a session that uses stronger security methods such as encryption of data.
  13. 13. Interaction between an LDAP client and an LDAP server  Perform Operations The client performs operations on directory data. LDAP offers both read and update capabilities. This allows directory information to be managed as well as queried. LDAP also supports searching the directory for data meeting arbitrary user-specified criteria. Searching is a very common operation in LDAP. A user can specify what part of the directory to search and what information to return. A search filter that uses Boolean conditions specifies what directory data matches the search.
  14. 14. Ldap Components A directory entry usually describes an object such as a person, a printer, a server, and so on. Each entry has a name called a distinguished name (DN) that uniquely identifies it. The DN consists of a sequence of parts called relative distinguished names (RDNs) The entries can be arranged into a hierarchical treelike structure based on their distinguished names. This tree of directory entries is called the Directory
  15. 15. What’s LDIF? Is a standard text file format for storing LDAP configuration information and directory contents. LDIF file is: A collection of entries separated from each other by blank lines A mapping of attribute names to values A collection of directives that instruct the parser how to process the information
  16. 16. Why LDIF ? System administrators prefer to use plain-text files for server configuration information, as opposed to some binary store of bits. More comfortable to deal with data in vi, Emacs, or notepad than to dig though raw bits and bytes
  17. 17. Types An directory server could be installed in the next ways: Directory Server Proxy Server Replication Gateway
  18. 18. LDAP addresses the problems Work in process
  19. 19. How LDAP works In process
  20. 20. What look for an LDAP Solution Ease of Deploy Portability Open Standards built using open standards and specifications as far as possible. DSML Ease of Administration web-based, graphical administration console command line interfaces Security
  21. 21. Choosing an LDAP Solution Work in progress
  22. 22. Keys to Successfully Implementing LDAP Distinguish clearly between requirements. Involve everyone, from the chief executive to the users, in the project. Make sure users are actively involved in the project. Use LDAP as an entry point for facilitating identity and access management (IAM) projects. . .
  23. 23. Road Map Work in process
  24. 24. LDAP Solutions Around World Some of the key vendors providing SSO Solutions are Oracle CA Symplified Forgerock IBM Courion Atlassian
  25. 25. Allidm.com Discovering Identity and Access Management Solutions Allidm Academy http://academy.allidm.com

×