6. Using LDAP as a security tool

LDAP is a directory. Very often, entries contain not only user IDs, but also passwords. So it quickly became apparent that using a directory to set up a security system to control access to a wide range of applications would be an interesting option.

There are many, many uses in this field. We are therefore presenting only a limited number of them.

6.1 Key distribution server (Kerberos)

A Kerberos server [37] [38] needs to be able to access a database containing the identifiers and keys of the various users ("principals" in Kerberos terminology). This database can be based on an LDAP directory, which will then contain, for each user in the Kerberos domain, the data required for ticket distribution.

The MIT and...

You do not have access to this resource.

Exclusive to subscribers. 97% yet to be discovered!

You do not have access to this resource. Click here to request your free trial access!

Already subscribed? Log in!

Ongoing reading
Using LDAP as a security tool

Previous
page Access control

Conclusion

Article included in this offer

"Security of information systems"

( 86 articles )

Complete knowledge base

Updated and enriched with articles validated by our scientific committees

Services

A set of exclusive tools to complement the resources

View offer details

Bibliography

(1) - SEMERSCHEIM (J.) - Lightweight Directory Access Protocol (LDAP): the protocol - – RFC 4511, juin 2006.
(2) - HARRISON (R.) - LDAP: Authentication methods and security mechanisms - – RFC 4513, juin 2006.
...

You do not have access to this resource.

Exclusive to subscribers. 97% yet to be discovered!

You do not have access to this resource. Click here to request your free trial access!

Already subscribed? Log in!