119
Chapter 9:
Exploring Directory Services
Security model
This model defines how to keep the data in the directory
secure. For most implementations of LDAP, a security protocol called Simple
Authentication and Security Layer (SASL) is used. RFC 2222 describes SASL.
One nice feature of LDAP is that an organization can build a global directory
structure using a feature called referral, where LDAP directory queries that are managed
by a different LDAP server are transparently routed to that server. Because each LDAP
server knows its parent LDAP server and its child servers, any user anywhere in the
network can access the entire LDAP tree. In fact, the users won't even know they are
accessing different servers in different locales.
Chapter Summary
In this chapter, you learned about both the importance of directory services and the
factors driving that importance. You also learned how directory services work, what
they accomplish, and those common features found in almost all directory services.
Finally, the most important directory services were each reviewed, including Novell's
eDirectory, Microsoft's domain service, and Active Directory service.
The next chapter continues the discussions about essential network technologies
and services by teaching you about remote access services, in which far-flung users can
access LANs from anywhere in the world. Implementing a good remote access system
that everyone is happy with is one of the most difficult things to do--especially for large
organizations with many different needs--so a variety of approaches are discussed.
Summary :
119 Chapter 9: Exploring Directory Services Security model This model defines how to keep the data in the directory secure. Finally, the most important directory services were each reviewed, including Novell's eDirectory, Microsoft's domain service, and Active Directory service.
Tags :
directory,ldap,serices,serer,different,chapter,access,security,remote,serers,network,importance,serice