[Date Prev][Date Next] [Chronological] [Thread] [Top]

LDAP global root for DC style naming



I've brought up a "global root" server at <ldap://root.openldap.org/>
for testing.  The server uses DNS SRV records to locate the appropriate
server(s) and form referrals for requests upon DC style DNs.

The server will respond to requests such as:
	ldapsearch -R -L -h root.openldap.org \
		-b "uid=kdz,dc=boolean,dc=net"  "(objectclass=*)"

with a referral (v2 or v3):
	ldap_search: Partial results and referral received
       	 additional info: Referral:
	ldap://ldap.boolean.net:389

IFF there is a DNS SRV record of the form available:

	_ldap._tcp.boolean.net. IN SRV 0 0 389 ldap.boolean.net.

As the service is implemented as a simple slapd backend, you can
bring up your own.  See slapd/tests/data/slapd-dnssrv.conf.

For implementation details, see libldap/dnssrv.c and slapd/back-dnssrv/*.
For information on LDAP server location via DNS, see:
  http://search.ietf.org/internet-drafts/draft-ietf-ldapext-locate-02.txt

Enjoy!