[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: poor performance of OpenLDAP vs AD?

To: OpenLDAP software list <openldap-software@OpenLDAP.org>
Subject: Re: poor performance of OpenLDAP vs AD?
From: Digant C Kasundra <digant@uta.edu>
Date: Fri, 15 Jul 2005 14:14:45 -0500
Cc: Tomasz Chmielewski <mangoo@interia.pl>
In-reply-to: <696A35152E40727FDEF3F5B8@[10.0.0.1]>
References: <42D50DDE.3000908@interia.pl> <E675CD07BB364E6F717445CA@cadabra-dsl.stanford.edu> <696A35152E40727FDEF3F5B8@[10.0.0.1]>

> Also, I want to note that AD is not a directory service, per se.  It is an 
> authentication and authorization service, and does not follow the LDAP 
> RFC's very closely in a number of key areas.  This can (and does) lead to 
> problems down the road if what you are truly looking for is a directory 
> service.
> 
> --Quanah

In our own research at UTA we found this to be true.  There are a handful of aspects that make AD problematic from the LDAP standpoint.  It is also problematic when you want to use it even for Authentication and Authorization of machines not running Windows.  While there are probably workarounds for everything, why not simply run software that works as expected and as dictated by RFC rather than spaghetti-code some workarounds?

For our central authentication and authorization, we us AD for Windows but we us Kerberos and OpenLDAP for everything else.

-- DK

Follow-Ups:
- Re: poor performance of OpenLDAP vs AD?
  - From: Paul Kölle <pkoelle@gmail.com>

References:
- poor performance of OpenLDAP vs AD?
  - From: Tomasz Chmielewski <mangoo@interia.pl>
- Re: poor performance of OpenLDAP vs AD?
  - From: Quanah Gibson-Mount <quanah@symas.com>
- Re: poor performance of OpenLDAP vs AD?
  - From: Quanah Gibson-Mount <quanah@stanford.edu>

Prev by Date: Re: access control question
Next by Date: Re: Urgent:slapd of openldap 2.0.19 is crashed in windows 2003 server with multiple CPUs
Index(es):
- Chronological
- Thread