This page explains what use of LDAP can be made on a Debian system.

LDAP is a protocol for querying a directory (database). However, the term is often used to refer to LDAP as if it were the database and protocol both.

An LDAP database stores information on objects in a hierarchical manner. Objects have attributes that contain the information that is stored about the object. Objects also have classes that define which attributes must and may be stored on the object. Objects in an LDAP database are distinguished by their Distinguished Name (DN) which indicates their place in the hierarchical tree.

You generally need an LDAP server somewhere that serves information and configured services/clients to use that information.

Server Setup

Client setup

Different parts of a Debian system can be configured to use LDAP.

User authentication

There are basically two ways to configure PAM to use an LDAP server. Both solutions depend on nslcd and have their pros and cons:



LDAP directory management

Populating the Server(s)

Some of these links may be out of date and not reflect the current state of Debian LDAP administration.

CategorySoftware | CategoryNetwork | CategorySystemAdministration