I don't understand how complicated software like this gets widely deployed and accepted when documentation on it is so limited and unclear... It is quite difficult to get ldap to function properly and am left with the question of how the hell anyone can figure out how to get this piece of software to do anything! If there was some form of acceptable documentation....
On Tuesday 18 September 2007 07:14:39 Hex Star wrote:
I don't understand how complicated software like this gets widely deployed and accepted when documentation on it is so limited and unclear...
I did not have any large problems deploying OpenLDAP the first time I tried it, using 2.0.x I think.
It is quite difficult to get ldap to function properly
Are you referring to specific software implementing the LDAP protocol, or the LDAP protocol itself?
I find it quite trivial to get OpenLDAP working on any decent Linux distribution.
and am left with the question of how the hell anyone can figure out how to get this piece of software to do anything! If there was some form of acceptable documentation....
The admin guide was sufficient for me to understand how to set the software up correctly. However, maybe you have insufficient background knowledge of the LDAP data model etc., and think that for some reason the guide to administering the OpenLDAP server software should teach you everything there is to know about the data model, protocol, other software etc.
So, maybe you can start a new thread, and ask some real questions.
Regards, Buchan
@OpenLDAP developers: I'm feeling friendly today so I'll take this one... ;-)
Hex Star wrote:
I don't understand how complicated software like this gets widely deployed and accepted when documentation on it is so limited and unclear... It is quite difficult to get ldap to function properly and am left with the question of how the hell anyone can figure out how to get this piece of software to do anything! If there was some form of acceptable documentation....
Actually there is documentation available today.
Additionally a personal historical note for clarifying how open source projects and their mailing lists work:
I started using Umich LDAP (predecessor of OpenLDAP) back in 1998. If I remember correctly I managed to get it working by trying to understand the basic concepts of LDAP, applying my (limited) knowledge about networked server software I had back then and sometimes asking questions on mailing list. Especially for the latter it was quite important for the success to provide information about what I had done so far by sending relevant excerpts from configuration files, error messages shown on console etc. I was quite surprised to find out how many helpful people are out there. I'm still thankful that developers, experienced admins etc. shared their in-depth knowledge with me. The rerequisite is off course that you yourself are friendly, you don't simply blame others for not providing enough docs and take the advice of experienced users.
Have a nice day. :-)
Ciao, Michael.
I don't understand how complicated software like this gets widely deployed and accepted when documentation on it is so limited and unclear... It is quite difficult to get ldap to function properly and am left with the question of how the hell anyone can figure out how to get this piece of software to do anything! If there was some form of acceptable documentation....
Do you understand the basics of LDAP (schema, partitioning, binding. naming conventions, etc....) - if not then you skipped a step and will possibly never get it working. My suggestion [not that anyone ever listens] is to first skip all the OpenLDAP documentation and read LDAP documentation; then come back to this specific implementation after you've got your head around the concepts of LDAP. LDAP is complicated, diving right into implementation is wrong approach.
I recommend - Understanding and Deploying LDAP Directory Services, ISBN-13: 978-0672323164 - to explain the LDAP part, it doesn't get hung up on any specific DSA (implementation of an LDAP server). Many newer texts see "LDAP" and "Active Directory" as interchangeable and thus don't teach you much of anything about LDAP. Most OpenLDAP related texts are obsolete before they hit the shelves.
HOWTOs, while useful, are not documentation. They only get you deeper into the hole of not-knowing-what-you-are-doing.
You will also need a side understanding of SASL and possibly NSS (depending on what you are doing). These are related technologies but not 'part of' LDAP or OpenLDAP thus documentation assumes you know what they are from other sources.
And OpenLDAP works very well, is fast and stable.
Hi,
first post from me to the list and no I'm not an LDAP expert and I still have a lot to learn about OpenLDAP. It is possible to learn it with the existing documentation but it takes some time!
I don't understand how complicated software like this gets widely deployed and accepted when documentation on it is so limited and unclear... It is quite difficult to get ldap to function properly and am left with the question of how the hell anyone can figure out how to get this piece of software to do anything! If there was some form of acceptable documentation....
I have read a lot about LDAP and OpenLDAP in 2 Books and various articles in Unix/Linux magazines.
Take a look at your local bookstore or Amazon, etc.
LINUX MAGAZINE has puplished an article about LDAP Authentication:
Part one: http://www.linux-mag.com/id/3722/
Part two: http://www.linux-mag.com/id/4124/
I think they are good for a start.
And there are a lot of other books and sources on the Internet, too. Have a look at
http://www.openldap.org/doc/admin23/
http://www.padl.com/Contents/Documentation.html
Michael
Hex Star wrote:
I don't understand how complicated software like this gets widely deployed and accepted when documentation on it is so limited and unclear... It is quite difficult to get ldap to function properly and am left with the question of how the hell anyone can figure out how to get this piece of software to do anything! If there was some form of acceptable documentation....
...you wouldn't need a system administrator?
openldap-software@openldap.org
-
Adam Tauno Williams -
Buchan Milne -
Hex Star -
Michael Ströder -
Michael Zoet -
Robert Brooks