This page explains what use of LDAP can be made on a Debian system.

LDAP is a protocol for querying a directory (database). However, the term is often used to refer to LDAP as if it were the database and protocol both.

An LDAP database stores information on objects in a hierarchical manner. Objects have attributes that contain the information that is stored about the object. Objects also have classes that define which attributes must and may be stored on the object. Objects in an LDAP database are distinguished by their Distinguished Name (DN) which indicates their place in the hierarchical tree.

You generally need an LDAP server somewhere that serves information and configured services/clients to use that information.



Server Setup

Client setup

Different parts of a Debian system can be configured to use LDAP.

User authentication

There are basically two ways to configure PAM to use an LDAP server. Both solutions have their pros and cons:


page cleanup/reorganization in progress below this point

Management Tools

Populating the Server(s)

Using LDAP

Debian-LAN implements most of the features listed below. Take a look there for examples.

DNS from LDAP

AutoFS Setup

LDAP + Kerberos Setup

SAMBA Setup

There are a lot of resources available on running, using and configuring LDAP servers and services. Note that the list is not ordered and some parts are likely out of date.


CategorySoftware | CategoryNetwork | CategorySystemAdministration | CategoryObsolete | ToDo: group with other LDAP pages