directory service

• Directory Service

https://store.theartofservice.com/the-directory-service-toolkit.html

Directory Services Markup Language

1 'Directory Services Markup Language' (DSML) is a representation of directory service information in an

XML syntax.


Multi-master replication - Directory services

1 Many directory service|directory servers based on Lightweight

Directory Access Protocol|LDAP implement multi-master replication.


Novell Directory Services

1 'Novell eDirectory' (formerly known as Novell Directory Services, sometimes

referred to as Netware Directory Services) is an X.500-compatible

directory service software product initially released in 1993 by Novell for

centrally managing access to resources on multiple Server (computing)|servers and computers within a given computer

network|network


Directory service

1 A 'directory service' is the software system that stores, organizes and provides access to information in a

directory


Directory service

1 Many different directory services have been used since the advent of the Internet but this article focuses

mainly on those that have descended from the X.500 directory service.


Directory service - Introduction

1 A directory service called a naming service, maps the names of network resources to their respective network

addresses



1 In X.500 (the directory service standards) and Lightweight Directory

Access Protocol|LDAP the name is called the 'Distinguished name' (DN) and is used to refer to a collection of

attributes (relative distinguished names) which make up the name of

a directory entry.



1 For example, looking up computers using a directory service might yield

a list of available computers and information for accessing them.



1 The term distribution is used to indicate that multiple directory

servers, that hold different namespaces, are interconnected to form a distributed directory service


Directory service - Comparison with relational databases

1 There are a number of things that distinguish a traditional directory service from a typical relational database. Of course there are

exceptions, but in general:


Directory service - Comparison with relational databases

1 * Directory services are often a central component in the Computer

security|security design of an IT system and have a correspondingly

fine granularity regarding access control: who may operate in which manner on what information. Also

see: Access control list|ACLs


Directory service - Implementations of directory services

1 In the 1980s, the International Telecommunication Union|ITU and

International Organization for Standardization|ISO came up with a

set of standards - X.500, for directory services, initially to support the

requirements of inter-carrier electronic messaging and network

name lookup



1 There have been numerous forms of directory service implementations from different vendors. Systems developed before the advent of

X.500 include:



1 * 'Domain Name System:' (DNS), the first directory service on the Internet, which is still used everywhere today.



1 * 'Network Information Service:' (NIS), originally named Yellow Pages (computing)|Yellow Pages (YP), was

Sun Microsystems' implementation of a directory service for Unix network

environments. It served a similar role as Hesiod.



1 * 'NetInfo:' was developed by NeXT in the late 1980s for NEXTSTEP. After

being acquired by Apple, it was released as open source and used as

the directory service for Mac OS X before being deprecated in favor of the LDAP-based Open Directory. Support for NetInfo was completely removed

with the release of 10.5 Leopard.



1 * 'Windows domain|NT Domains:' was developed by Microsoft to provide

directory services for Windows machines prior to the release the LDAP-based Active Directory in Windows 2000. Windows Vista

continues to support NT Domains, but only after relaxing the minimum authentication protocols it supports.


Directory service - LDAP implementations

1 * 'Active Directory:' Microsoft's modern directory service for

Windows, originating from the X.500 directory, created for use in

Exchange Server, first shipped with Windows 2000 Server and is

supported by successive versions of Windows.



1 * 'Novell eDirectory|eDirectory:' This is Novell's implementation of directory

services. It supports multiple architectures including Microsoft

Windows|Windows, NetWare, Linux and several flavours of Unix and has long been used for user administration,

configuration management, and software management. eDirectory has evolved into a central component in a broader

range of Identity management products. It was previously known as Novell

Directory Services.https://store.theartofservice.com/the-directory-service-toolkit.html


1 * 'Red Hat Directory Server:' Red Hat released a directory service, that it

acquired from AOL's 'Netscape Security Solutions' unit,[

http://www.informationweek.com/story/showArticle.jhtml?articleID=48800390 ] as a commercial product running on top of Red Hat Enterprise Linux called Red

Hat Directory Server and as the community supported 389 Directory

Server project.



1 Retrieved on 2013-07-17.[ http://blogs.kuppingercole.com/kuppi

nger/category/directory-services/ Directory Services | Martin

Kuppinger]



1 * 'Open Directory:' Apple Computer|Apple's Mac OS X Server uses a directory service named Apple Open Directory|Open Directory, which

implements Lightweight Directory Access Protocol|LDAP using a customized build of OpenLDAP and integrates support for both

Simple Authentication and Security Layer|SASL and Kerberos (protocol)|Kerberos

authentication. It uses a plugins architecture to work with other LDAPv3 directories, including proprietary solutions like Active Directory and

eDirectory.https://store.theartofservice.com/the-directory-service-toolkit.html


1 * 'Apache Directory Server:' Apache Software Foundation offers a

directory service called Apache Directory Server|ApacheDS.



1 * 'Sun Java System Directory Server:' Sun Microsystems' current directory service

offering



1 * 'OpenDS:' An open source directory service implementation from scratch in Java, backed by Sun Microsystems



1 There are also plenty of open-source tools to create directory services,

including OpenLDAP and the Kerberos (protocol)|Kerberos protocol, and

Samba software which can act as a Windows Domain Controller with

Kerberos (protocol)|Kerberos and LDAP backends. Administration is done using

GOsa or Samba provided Samba software|SWAT.


Directory services

1 As a word in a dictionary may have multiple definitions, a directory

service can associate a name with multiple, different pieces of

information


Directory services - Introduction

1 A directory service called a naming service, maps the names of network resources to their respective network

addresses


Directory services - Comparison with relational databases

1 Several things distinguish a traditional directory service from a

typical relational database. Of course there are exceptions, but in general:


Directory services - LDAP implementations

1 * 'Apache Directory Server:' Directory service written in Java,

supporting LDAP, Kerberos 5 and the Change Password Protocol. LDAPv3

certified. The Apache Directory Server is also a top level project of the Apache Software Foundation.



1 * 'NetIQ eDirectory|eDirectory:' This is NetIQ's implementation of directory services. It

supports multiple architectures including Microsoft Windows|Windows, NetWare, Linux

and several flavours of Unix and has long been used for user administration,

configuration management, and software management. eDirectory has evolved into a

central component in a broader range of Identity management products. It was

previously known as Novell Directory Services.



1 * 'Red Hat Directory Server:' Red Hat released a directory service, that it

acquired from AOL's 'Netscape Security Solutions'

unit,[http://www.informationweek.com/story/showArticle.jhtml?articleID=48800390 ] as a commercial product running on top of

Red Hat Enterprise Linux called Red Hat Directory Server and as the community supported 389 Directory Server project.



1 There are also plenty of open-source tools to create directory services,

including OpenLDAP and the Kerberos (protocol)|Kerberos protocol, and

Samba software, which can act as a Windows Domain Controller with

Kerberos (protocol)|Kerberos and LDAP backends. Administration is done using

GOsa or Samba provided Samba software|SWAT.


Directory Services Restore Mode

1 'Directory Services Restore Mode' (DSRM) is used on a Microsoft

Windows Domain Controller to take the Active Directory on that machine

offline.


Novell Directory Service

1 Previously owned by Novell, the product has also been known as

'Novell Directory Services' ('NDS') and sometimes referred to as NetWare Directory Services


Novell Directory Service - Features

1 The software supports referential integrity, multi-master replication, and has a modular authentication

architecture. It can be accessed via Lightweight Directory Access

Protocol|LDAP, Directory Service Markup Language|DSML, SOAP, ODBC, JDBC, JNDI, and Active

Directory Service Interfaces|ADSI.


NT Directory Service

1 'Active Directory' ('AD') is a directory service that Microsoft developed for Windows domain

networks and is included in most Windows Server operating systems

as a set of Process (computing)|processes and Windows service|

services.


NT Directory Service - Logical structure

1 As a directory service, an Active Directory instance consists of a

database and corresponding executable code responsible for

servicing requests and maintaining the database


NT Directory Service - Database

1 Programs may access the features of Active Directory via the Component

Object Model|COM interfaces provided by Active Directory Service

Interfaces.


NT Directory Service - Database

1 [http://msdn.microsoft.com/en-us/library/aa772170%28VS.85%29.aspx Active Directory Service Interfaces],

Microsoft


NT Directory Service - Unix integration

1 An alternate option is to use another directory service such as 389 Directory

Server (formerly Fedora Directory Server, FDS), ViewDS Identity Solutions - ViewDS

v7.2 XML Enabled Directory or Sun Microsystems Sun Java System Directory

Server, with the latter two both being able to perform two-way synchronization with

AD and thus provide a deflected integration, as non-Windows clients

authenticate to this while Windows Clients authenticate to AD


For More Information, Visit:

• https://store.theartofservice.com/the-directory-service-toolkit.html

The Art of Servicehttps://store.theartofservice.com






directory service

Documents