Structure Of An Ldap Directory Tree - Novell LINUX ENTERPRISE SERVER 11 - SECURITY Manual

• Administration of zone descriptions for a BIND9 name server
• User authentication with Samba in heterogeneous networks
This list can be extended because LDAP is extensible, unlike NIS. The clearly-defined
hierarchical structure of the data eases the administration of large amounts of data, be-
cause it can be searched more easily.
4.2 Structure of an LDAP Directory
Tree
To get a deep background knowledge on how a LDAP server works and how the data
are stored, it is vital to understand the way the data are organized on the server and how
this structure enables LDAP to provide fast access to the data you need. To successfully
operate an LDAP setup, you also need to be familiar with some basic LDAP terminol-
ogy. This section introduces the basic layout of an LDAP directory tree and provides
the basic terminology used in an LDAP context. Skip this introductory section, if you
already have some LDAP background knowledge and just want to learn how to set up
an LDAP environment in SUSE Linux Enterprise Server. Read on at
"Configuring an LDAP Server with YaST"
figuring an LDAP Server"
An LDAP directory has a tree structure. All entries (called objects) of the directory
have a defined position within this hierarchy. This hierarchy is called the directory in-
formation tree (DIT). The complete path to the desired entry, which unambiguously
identifies it, is called distinguished name or DN. A single node along the path to this
entry is called relative distinguished name or RDN.
The relations within an LDAP directory tree become more evident in the following
example, shown in Figure 4.1, "Structure of an LDAP Directory"
(page 40) or
(page 60), respectively.
Section 4.3,
Section 4.7, "Manually Con-
(page 38).
LDAP—A Directory Service 37