Please fill up the below form
and our Career Consultant will
contact to you in next 12 hours!
Live Practice Labs
Our live access labs provide full console access to a self-paced study lab environment. This is an ideal place to re-work lab exercises from class or to experiment with advanced configuration from your home or hotel room. Find out which works for you and get a downloadable eKit when you enroll.
|
|
Directory Service Integration Using OpenLDAP This is an advanced training program for UNIX-competent system administrators. This training program covers in-depth concepts based on centralized information management using LDAP. It covers LDAP concepts, architecture and design, installation, configuration and routine administration using OpenLDAP, understanding LDAP schema, management of LDIF files, migration techniques of existing enterprise data onto OpenLDAP. Audience: Who should attend Prerequisites Attendees should already have a good command over Linux perating systems. You should already be comfortable with editing configuration files and installing software on linux system. You should understand fundamentals such as directory services, hostnames, user-ids, file systems, and file permissions.
Course Outline The larger the information system, the harder it becomes to find, maintain or even know what's available. As networks grow and become more complex, they are well served by some sort of directory.Mailing lists, aliases file, password files, and even the Windows NT/2000/2003 registry are all examples of databases you probably see every day. A directory is just one special kind of such databases. So, why consider LDAP, for integrating these application specific directories? Why not use an ordinary relational database like PostgreSQL, MySQL or Oracle for this purpose? If you where to opt for this, over LDAP, what do you get to loose or benefit? What it takes to plan for, deploy and maintain a directory service: * The directory will not exactly design itself; meaning, knowing how the pieces connect, gathering data about your environment, the different data sources, users, applications etc. are just the first useful steps. * You certainly would like to give your design a test drive. But before you do, what are those technical and practical factors that will affect your choice of directory vendor? Besides choosing directory software, what’s more to consider during these deployment phase. * You need to know the directory is up/running, and users are getting adequate performance. Also, if the directory has stale data, it’s more or less useless. Another thing is, even the best designed directory service occasionally has problems. So, what are those questions you need answers to, while planning for directory maintenance Introduction - Features Enumerate key features Discuss typical LDAP applications Compare and contrast LDAP namespace to DNS namespace Discuss key offline|online administrative tools Identify key systems to be used LDAP Concepts Discuss Distinguished Names (DNs) Directory Information Tree (DIT) Discuss Object Classes Discuss Attributes Discuss the importance of Schemas Explain how LDAP interacts with PAM and NSS to authenticate users Master Server Configuration Configure Master server to serve the default LDAP namespace Initiate LDAP server Define Directory Information Tree (DIT) Update /etc/hosts files with participating LDAP servers Use LDAP Browser GUI to explore LDAP DIT Explain LDIF entries Create the top-level LDAP DIT container object using 'ldapadd' with LDIF file Create second-level Organizational Units (OUs) for functional groups Create users within each second-level OU Verify results Attempt to create duplicate entries Configure Replication Explore network topology Install required packages on LDAP replication partner (replica) Enumerate and execute replication configuration steps Evaluate results on master and replica LDAP servers LDAP Add Explain 'ldapadd' usage Add users to remaining OUs Verify results Use 'ldapadd' with: STDIN and LDIF file Use 'ldapadd' from replica Evaluate results using 'ldapsearch' and LDAP Browser GUI LDAP Delete Explain 'ldapdelete' usage Delete specific LDAP objects remotely Evaluate results Delete multiple LDAP objects using STDIN and LDIF Evaluate results Use 'ldapsearch' to derive applicable LDIF statements Attempt to delete non-existing and existing items Evaluate results using: 'ldapsearch' and LDAP Browser GUI LDAP Modify Confirm current state of DIT on master and replicas using 'ldapsearch' Rebuild the DIT using 'ldapmodify' Confirm results with LDAP Browser GUI Modify attributes using 'ldapmodify' with LDIF Delete objects using 'ldapmodify' Evaluate results LDAP Search Discuss supported boolean operators Discuss filter operators Use wildcards in searches Peform string searches Search distinct OUs for all object types Search the DIT for OUs Search the DIT for specific attributes Search the DIT for specific user objects Perform boolean searches Evaluate results Logging Explore master server logging and syslog configuration Discuss debugging levels Start LDAP server in desired debug level Evaluate results Vary logging verbosity Configure logging on replica server Evaluate results LDIF Use 'ldapsearch' to explore LDIF entries Discuss LDIF structure Discuss key object types Create a new user object using LDIF Delete using LDIF Modify using LDIF Evaluate results LDAP Schemas Explain applicability Examine 'slapd.conf' Explore default schema files on master and replica servers Correlate schemas to LDIF entries Migrate to LDAP Authentication Migrate primary server to LDAP authentication Confirm configuration Migrate replica servers to LDAP authentication Evaluate results Migrate local users from master and replica servers to LDAP DIT Confirm results using 'ldapsearch' Confirm authentication of LDAP users on master and replica servers Migrate other useful Linux|Unix tables Syncrepl Replication Migrate from 'slurpd' to 'syncrepl' Evaluate results LDAP Security Explore Access Control Lists (ACLs) Configure SSL/TLS encryption Evaluate results Enough said, examine the practices labs that cover the above: PRACTICE LABS: Building a Company’s white pages Application integration; Postfix, Kerberos, Samba, SSH and files in /etc OpenLDAP Replication and Directory Distribution CASE STUDIES: An Enterprise with an Extranet 
Trainings
|