OpenLDAP 2.3.8 has been released, with numerous fixes and enhancements. In addition to fundamental stuff like N-Way Multimaster & Mirror Mode and improved configuration backend this version introduces back-sock. With back-sock it becomes possible to build out-of-process backends that do... anything. This is an exciting opportunity fo

LDAPAccountSync (introduced with OGoMojo 0.0.14) is a utility to push LDAP account information into the OpenGroupware server. If the create mode is enabled LDAPAccountSync will create a new OGo account if an account corresponding to the LDAP account is not found, if update mode is enabled LDAPAccountSync will only update the contact information of the OGo accounts that match an LDAP account. Both modes can be enabled simultaneously. The mapping of LDAP attributes to OGo contact properties is entirely configurable (via the OGoMojo.ini configuration file).

2007-12-19 - As of zOGI r879 the LDAPTeamSync utility has been ported to use the zOGI API. Configuration of the utility remains the same, but it is now developed in the Consonance repository.

The 0.0.12 version of OGoMojo contains a utility called "LDAPTeamSync". This utility reads groups from a DSA and writes corresponding membership information to the OpenGroupware server, this allows you to automate pushing team membership from your LDAP server to your OpenGroupware instance. LDAPTeamSync supports both POSIX (RFC2307) stype groups and X.500 groups like groupOfNames where the member is the DN of an account.

This presentation has two parts: the first lays out and defines the myriad concepts and terms concerning secure wireless, the second describes configuring FreeRADIUS to provide PEAP (Protected EAP) authenticated access on a wireless network. The authentication store can be either a CIFS DC or an LDAP server containing NT hashed passwords.

OpenLDAP 2.3.19 RPMs for recent SuSe distributions are now available from the SuSe projects directory of their FTP server. And a fast mirror is available at http://suse.osuosl.org/projects/OpenLDAP/2.3/. Binary packages for 10.0 can be found here and the corresponding source RPMs here. Version 2.3.19 is the current stable version.

These are OpenLDAP RPM packages I've built on OpenSuSe 10.0 for testing. These are based on the OpenLDAP packages from ftp://ftp.suse.com/pub/projects/OpenLDAP. They are provided as is - before using any package in an enterprise environment you should perform exhaustive testing. The current stable version of OpenLDAP is 2.3.19.

While the default behaviour of the OpenNMS service is to authenticate users against it's own PostgreSQL database, it can be configured to authenticate users against an LDAP DSA and load role information from the LDAP Dit. While users must still be defined within the service's database this facilitates more centralized administration and eases password management for users.

The ISO 639 document (available here or here) defines codes for a majority of languages. These codes are very useful for categorizing documents or other materials; and by using a standard set of codes everyone can understand your language categories. In order to facilitate lookup of these codes it is often useful to load them into a RDBMS or DSA.

OpenLDAP 2.3.15 (ftp) has been released. As always you can read about the enhancements and fixes in the Changes file. 2.3.11 (ftp) is still marked as the stable release. If you are going to compile this yourself don't forget to look over the FAQ-O-Matic entry about linking to BDB before you post to the lists about that particular problem. RPMS of OpenLDAP 2.3.11 can be found here for SuSe 10.0 and here for SuSe 9.3.

There are constant requests to various LDAP mail lists for instructions on how to configure OpenLDAP or some other DSA into a multi-master configuration. OpenLDAP does not support multi-master, so in that case it is simply not possible. But is this a really a flaw in OpenLDAP? Setting aside that the redundancy needs of almost everyone asking this question could be solved via the standard master-slave replicant configuration - Is Multi-Master really a good solution for anyone? If you are interested in Multi-Master then read this URL.