-- TobyBlake - 01 Apr 2008

Description The DICE LDAP service is an OpenLDAP based directory service, which is configured via LCFG.
Unit Infrastructure
End Users University Staff
Software OpenLDAP with bdb
Hardware 5 x servers - 1 master (franklin), 4 site-slaves (AT - panther, BP - kingsmen, FH - mustang, KB - nautilus)
Risk Two People
Review Status University Equivalent Unsuitable
Review Details


Redundancy one master where all writes are performed, 4 designated site-slaves, kept in sync with the master by "syncrepl" replication technology (instantaneous). Also, all DICE machines run a full copy of the LDAP server, kept in sync hourly with the master using in-house "slaprepl" technology.
Connection Authentication Kerberos
Connection Authentication Details (if Other) also allows anonymous read access to slaves
Connection Authorization Roles/Capabilities
Connection Authorization Details (if Other) write access on master is managed via Roles/Capabilities via slapd's own ACL definitions, read access on all slaves uses same ACLs, but not Roles/Caps
Connection Configuration Management LCFG
Connection Configuration Management Details (if Other)

Connection Visibility Informatics
Connection Visibility Details (if Other)

Connection Supported Clients

Connection Client Configuration

Backend Authentication Inherited from Connection
Backend Authentication Details (if Other)

Backend Authorization Inherited from Connection
Backend Authorization Details (if Other)

Backend Configuration Management LCFG
Backend Configuration Management Details (if Other)

User Feature Authentication Inherited from Connection
User Feature Authentication Details (if Other)

User Feature Authorization Not Applicable
User Feature Authorization Details (if Other)

User Feature Configuration Management Not Applicable
User Feature Configuration Management Details (if Other)

Link to End User Documentation

Link to Technical Documentation http://www.openldap.org/ https://wiki.inf.ed.ac.uk/DICE/FinalProjectReport-15 https://devproj.inf.ed.ac.uk/project/show/15
Miscellaneous Comments

Topic revision: r1 - 01 Apr 2008 - 11:46:34 - TobyBlake
This site is powered by the TWiki collaboration platformCopyright © by the contributing authors. All material on this collaboration platform is the property of the contributing authors.
Ideas, requests, problems regarding TWiki? Send feedback
This Wiki uses Cookies