Quick Look: LDAP

-
You may not realize it but you've very likely used LDAP. If you've signed onto a computer at a business or a school/college campus within the last 30 years then you almost definitely have. LDAP stands for Lightweight Directory Access Protocol. It's an open standard being supported by companies such as Microsoft, Apple, IBM, etc. I've already described DNS as akin to a phonebook for the internet. However, LDAP is like a company-wide phonebook. LDAP is the protocol for a special database that's been designed to store attributes about users, services, etc.

In most corporate settings, you can use your email client to find the email address of somebody in the company, even if they've never sent you an email. This can be done whether you're an all Windows shop or an all Linux environment. Let's assume that you're using Outlook in a Windows environment. Outlook will coordinate with the Exchange server, which shares a lot of information with your org's Active Directory infrastructure. Active Directory (AD) is it's own service on the network but it communicates via the LDAP protocol. LDAP doesn't define how applications work: It merely gives them a shared communication protocol. 

LDAP records can contain names, addresses, email addresses, phone numbers, birthdays, e,tc. They can also contain access permissions configured by the SysAdmin or IT department. After all, not everyone needs the same access as everyone else. LDAP also defines the schema for this database of information. The schema sets how the format and attributes of the records looks to other systems. As a database, you can query it for information. While LDAP queries could be their own post or series of posts, it's possible to search for all staff  whose last name contains John in the San Francisco office. Return their full name, email, and title. 

This was just a quick look at what LDAP is. I hope this helped any of you who were curious to know. 

Comments

Post a Comment

Popular posts from this blog

Installing CentOS 7 on a Raspberry Pi 3

-
Image
The Raspberry Pi is awesome. If you're like me, you bought one to tool around with for educational purposes. You can run Kodi or gaming console emulators on it or you can combine some together for a tiny OpenStack cluster. At, $50-$60, they're easy on the wallet and running off of 5v USB power makes them pretty energy efficient. Sure, it's only a 1Ghz ARM processor which limits your OS choices but I'd rather have a Pi than running an old Dell PowerEdge or HP Proliant that I bought off of Craigslist. Instead of installing the usual Raspbian OS, this guide is on installing CentOS 7. However, the process described below is relatively universal to whatever OS you want to install on your Pi.
Read more

Modifying the Zebra F-701 & F-402 pens

-
Image
I've been carrying a pen as part of my (mostly) every-day-carry, or EDC, for a couple years now. I bought the Zebra F-701 and after a few other pen purchases, the 701 is still my favorite of all. At first, I just wanted a pen that looked nice and for the moments I needed to sign something. I recall attending meetings when I worked at the university where the attendees were asked to sign-in on the attendance sheet: I tended to be the only one that didn't have a pen so I felt unprepared when I had to ask one of the other attendees if I could borrow theirs. Once I started college, I found myself using a pen much more often, so it had to be comfortable, relatively inexpensive (nice pens can cost hundreds of dollars), and still stylish enough to live in the pocket of a dress shirt.
Read more

How to fix DPM Auto-Protection failures of SQL servers

-
For longer than I care to admit, my DPM server has had the same error every night about an auto-protection failure on one of my SQL servers. I've looked into it before but never came away with anything useful until recently. I've finally found information on how to fix this annoying issue. The Advanced Information link in the error will tell you to make sure WMI is in a good state on the machine. The error itself isn't very descriptive. It'll look something like "DPM could not enumerate SQL Server instances using Windows Management Instrumentation on the protected computer $serverFQDN."
Read more