OpenLdap LDAP Training in Hyderabad
Call/WhatsApp: +91 8008814567
shiva@sanaari.net
USA : +1 484 365 2489
Duration:(20 hours)
The course uses OpenLDAP which is available on Linux, UNIX and Windows platforms to illustrate LDAP principles and operation and which is relatively invisible during the basic course. The course makes extensive use of a platform independent LDAP browser to discovery and interrogate LDAP implementations including Windows Active Directory. The course is offered with Linux (Fedora Core), FreeBSD or Windows as the platform for all excercises.
Introduction:
Lightweight Directory Access Protocol (LDAP) is the emerging standard for managing resources and objects used within and in some cases between organizations. The hierarchical, yet flexible architecture, of LDAP makes it suitable for a wide range of tasks from simple customer address lists through operational provision of Single Sign-On (SSO and Identity Management) to a repository for network wide policy management. With resilience, platform independence and distributed functionality built-in, coupled with LDAP abstraction layers available from most transaction oriented database suppliers, LDAP is the ideal standards based approach to unifying data usage on an enterprise wide basis. Microsoft's Active Directory is but one of a number of enterprise wide solutions using LDAP to glue together disparate data.
Description
Students will learn the theory and organization of the LDAP hierarchy or Object Tree Structure covering the Data Information Tree (DIT), objectClasses and attributes. LDAP Interchange Files (LDIF), LDAP security, STRUCTURAL, AUXILIARY and ABSTRACT Object Classes, Schemas, ASN.1 notation, matching rules, indexing and searching are all covered in detail. Students will construct a simple application when the basic theory has been covered and then progressively enhance the application with increasingly complex functionality to both fully illustrate all the architectural elements and as a practical demonstration of the flexiblibly and extensibility of LDAP. A platform independent LDAP browser is used throughout the course to examine both the students application and the Windows Active Directory LDAP implementation.
Audience:
The course is optimized for LDAP designers, architects and implementors, Network and System administrators and those who need a thorough understanding of LDAP technology.
Contents
Module 1: LDAP Introduction and Theory
Directory Background
o What is a directory
o History of directories
o X.500 and X.519 DAP
o X.500 and Global Uniqueness
o The IETF and LDAP
LDAP Introduction
o LDAP Scope
o LDAP and Transactional Databases
o LDAP is good for.....
o LDAP - myths, legends and nonsense
LDAP Object Tree Structureo LDAP models defined (Information, Naming, Functional, Security)o LDAP Data Information Tree (DIT)o LDAP DIT rooto LDAP Entrieso LDAP objectClasseso LDAP hierarchy (Parent, Child, Siblings)o LDAP attributes LDAP and ASN.1o Global uniquenesso ASN.1 Notationo ASN.1 exampleso ASN1. in LDAP
Exercise: White Page attributes
Ideal contents of a White Page directory
Module 2: LDAP Information (Data) ModelAttribute Characteristicso Data content and formato Optional or Manadatoryo Single or multiple instanceso Names and aliaseso Matching Rules
ObjectClass Characteristicso Collection of Attributeso Defines attribute propertieso Structural, Auxiliary and Abstract
LDAP Schemas - packages of objectClasses and Attributes The InetOrgPersonobjectClass
Attributes and StructureOrganizationalPersonobjectClass
Person objectClass
DIT Design and Organizationo Top Level Organization of DITo Organizational Unitso Global Uniqueness or Noto Future Flexibilityo Flat architectureo Structure examples
Exercise: Design White Page LDAP DIT
Module 3: LDAP Functional Model
Reading and Writingo Read (Search) and Write (Modify) Characteristicso Distinguished Names (DN)o Relative Distinguished Names (RDN)o Mapping to White Pages Directory
Indexingo Power of Indexingo Controling Indexingo Cost of Indexingo Optimize Indexing - frequently
LDIFo LDAP Interchange Format fileso LDIF functionso LDIF Layouto LDIF to Create an empty DIT
Exercise: Create White Page LDAP ApplicationExercise: The LDAP Browsero Browse the Structureo Add Recordso Delete Recordso Search Recordso Browse Active Directoryo Search Active Directory
LDAP URLso LDAP URL Notation and structureo LDAP URL Limits and Functionality
Exercise: Use Browser to explore LDAP
Module 4: LDAP Referrals and SecurityDAP is Distributedo LDAP Organizational Hierarchyo Referralso Defining Referralso Referral examples
Module 4: LDAP Referrals and SecurityDAP is Distributedo LDAP Organizational Hierarchyo Referralso Defining Referralso Referral examples
LDAP Security Modelo LDAP Operations vs Datao LDAP Security Overviewo LDAP Security featureso Securing ADo White Page Security Requirementso LDAP Security - White Page application
Exercise: Add Security PolicyLDAP Save/Restoreo Using LDIF files
Exercise: Archive/Restore LDAP
Module 5: Extending LDAPAdding New Functionalityo Adding child entrieso Extending existing entrieso Adding new Organizational Units
Groups - groupOfNames
o Use and function of groupso Assigning permissions with groups
Exercise: Enhance white Page applicationLDAP Security Model - enhancedo LDAP Complex Securityo LDAP Enhanced Security Policy requirement
Exercise: Add and test security policyLDAP Security Model - Replicationo LDAP Replicationo LDAP Replication Characteristics and features
Exercise: Replicate Application
Module 6: LDAP for Access SecurityAccess Securityo Authentication and Authorizationo Single User - Single Passwordo Single Sign-On (SSO)o Platform Authentication – UNIX/Windows
Adding Authentication and Authorization
o LINUX/UNIX - posixAccount
Exercise: Add Authentication to ApplicationExercise: Add and test security policy
Module 7: LDAP SummaryLDAP Summaryo DITo objectClasseso Attributeso Schemaso LDIF LDAP Resources
No comments:
Post a Comment