[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Manageing Access To an LDAP server.

To: Jon Roberts <jon@mentata.com>
Subject: Re: Manageing Access To an LDAP server.
From: Adam Tauno Williams <adam@morrison-ind.com>
Date: Tue, 4 Feb 2003 11:05:26 -0500
Cc: "Jason C. Leach" <jleach@ocis.net>, openldap-software@OpenLDAP.org
In-reply-to: <3E3FDF3B.2000103@mentata.com>
References: <20030204042652.GI3498@ocis.net> <3E3FDF3B.2000103@mentata.com>
User-agent: Internet Messaging Program (IMP) 3.2-cvs

>I am not big on data replication, but it's also possible to duplicate 
>your database (or a subset of it) to a machine in your DMZ as you 
>mention. You could potentially be more secure, but you'd also have a 
>high administration cost.

You can use partial replication to create a DSA outside your firewall.  Then
people can query it directly, via LDAP.  Just remember to enable anonymous
connections.  Publish a public SRV record that points at your public LDAP server
and people can "magically" reference you,  very cool.

References:
- Manageing Access To an LDAP server.
  - From: "Jason C. Leach" <jleach@ocis.net>
- Re: Manageing Access To an LDAP server.
  - From: Jon Roberts <jon@mentata.com>

Prev by Date: Authentication for a script?
Next by Date: Re: prb: Wildcards getting quoted with Java/JNDI
Index(es):
- Chronological
- Thread