1999-10-01 00:57:45 +08:00
|
|
|
# $OpenLDAP$
|
2008-02-13 15:35:23 +08:00
|
|
|
# Copyright 1999-2008 The OpenLDAP Foundation, All Rights Reserved.
|
1999-04-24 07:41:45 +08:00
|
|
|
# COPYING RESTRICTIONS APPLY, see COPYRIGHT.
|
1999-04-24 07:00:44 +08:00
|
|
|
H1: The Big Picture - Configuration Choices
|
|
|
|
|
2000-07-30 23:18:55 +08:00
|
|
|
This section gives a brief overview of various {{TERM:LDAP}} directory
|
2006-12-08 13:02:21 +08:00
|
|
|
configurations, and how your Standalone LDAP Daemon {{slapd}}(8)
|
2000-07-23 09:43:12 +08:00
|
|
|
fits in with the rest of the world.
|
1999-04-24 07:00:44 +08:00
|
|
|
|
|
|
|
|
2000-07-23 09:43:12 +08:00
|
|
|
H2: Local Directory Service
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2006-12-08 05:50:15 +08:00
|
|
|
In this configuration, you run a {{slapd}}(8) instance which provides
|
|
|
|
directory service for your local domain only. It does not interact
|
|
|
|
with other directory servers in any way. This configuration is shown
|
|
|
|
in Figure 3.1.
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2007-08-01 19:30:50 +08:00
|
|
|
!import "config_local.png"; align="center"; title="Local service via slapd(8) configuration"
|
2000-07-23 09:43:12 +08:00
|
|
|
FT[align="Center"] Figure 3.1: Local service configuration.
|
1999-04-24 07:00:44 +08:00
|
|
|
|
|
|
|
Use this configuration if you are just starting out (it's the one the
|
|
|
|
quick-start guide makes for you) or if you want to provide a local
|
|
|
|
service and are not interested in connecting to the rest of the world.
|
|
|
|
It's easy to upgrade to another configuration later if you want.
|
|
|
|
|
|
|
|
|
2000-07-23 09:43:12 +08:00
|
|
|
H2: Local Directory Service with Referrals
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2006-12-08 05:50:15 +08:00
|
|
|
In this configuration, you run a {{slapd}}(8) instance which provides
|
|
|
|
directory service for your local domain and configure it to return
|
2006-12-08 11:17:38 +08:00
|
|
|
referrals to other servers capable of handling requests. You may
|
|
|
|
run this service (or services) yourself or use one provided to you.
|
|
|
|
This configuration is shown in Figure 3.2.
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2007-08-01 19:30:50 +08:00
|
|
|
!import "config_ref.png"; align="center"; title="Local service with referrals"
|
2000-07-23 09:43:12 +08:00
|
|
|
FT[align="Center"] Figure 3.2: Local service with referrals
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2006-12-08 11:17:38 +08:00
|
|
|
Use this configuration if you want to provide local service and
|
|
|
|
participate in the Global Directory, or you want to delegate
|
|
|
|
responsibility for {{subordinate}} entries to another server.
|
1999-04-24 07:00:44 +08:00
|
|
|
|
|
|
|
|
2000-07-23 09:43:12 +08:00
|
|
|
H2: Replicated Directory Service
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2006-12-08 11:17:38 +08:00
|
|
|
slapd(8) includes support for {{LDAP Sync}}-based replication, called
|
|
|
|
{{syncrepl}}, which may be used to maintain shadow copies of directory
|
|
|
|
information on multiple directory servers. In its most basic
|
|
|
|
configuration, the {{master}} is a syncrepl provider and one or more
|
|
|
|
{{slave}} (or {{shadow}}) are syncrepl consumers. An example
|
|
|
|
master-slave configuration is shown in figure 3.3.
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2000-07-23 09:43:12 +08:00
|
|
|
!import "config_repl.gif"; align="center"; title="Replicated Directory Services"
|
|
|
|
FT[align="Center"] Figure 3.3: Replicated Directory Services
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2006-12-08 11:17:38 +08:00
|
|
|
This configuration can be used in conjunction with either of the
|
|
|
|
first two configurations in situations where a single {{slapd}}(8)
|
|
|
|
instance does not provide the required reliability or availability.
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2000-07-23 09:43:12 +08:00
|
|
|
H2: Distributed Local Directory Service
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2000-07-23 09:43:12 +08:00
|
|
|
In this configuration, the local service is partitioned into smaller
|
2002-04-20 15:24:14 +08:00
|
|
|
services, each of which may be replicated, and {{glued}} together with
|
2000-08-12 14:35:08 +08:00
|
|
|
{{superior}} and {{subordinate}} referrals.
|
|
|
|
!if 0
|
|
|
|
An example of this configuration is shown in Figure 3.4.
|
1999-04-24 07:00:44 +08:00
|
|
|
|
2000-07-23 09:43:12 +08:00
|
|
|
!import "config_dist.gif"; align="center"; title="Distributed Local Directory Services"
|
|
|
|
FT[align="Center"] Figure 3.4: Distributed Local Directory Services
|
2000-08-12 14:35:08 +08:00
|
|
|
!endif
|