Portal/IDB/logo_portal.png Welcome into Debian LDAP Portal

Portal/IDB/icon-ldap-32x32.png This portal tries to centralize Debian LDAP documentation.

LDAP stands for Lightweight Directory Access Protocol and is a protocol for querying a directory (database). However, the term is often used to refer to LDAP as if it were the database and protocol both.

An LDAP database stores information on objects in a hierarchical manner. Objects have attributes that contain the information that is stored about the object. Objects also have classes that define which attributes must and may be stored on the object. Objects in an LDAP database are distinguished by their Distinguished Name (DN) which indicates their place in the hierarchical tree.

For more general information about LDAP see Ldap. These pages try to explain what use of LDAP can be made on a Debian system.

Server Setup

Different parts of the system can be configured to use LDAP to different degrees. Most parts are independant so it's not required to use LDAP for all parts. You generally need an LDAP server somewhere that serves information and configured services to use that information.

Management Tools

Populating the Server(s)

Using LDAP

Debian-LAN implements most of the features listed below. Take a look there for examples.

NSS and PAM Client Setup


AutoFS Setup

LDAP + Kerberos Setup


There are a lot of resources available on running, using and configuring LDAP servers and services. Note that the list is not ordered and some parts are likely out of date.