Français
5. Access control
The purpose of access control is to manage the rights of the various users of a directory. Most often, this is done by means of access control lists. How these lists are managed and implemented depends, of course, on the implementation. For example, lists can be in the form of files, read at server start-up (static configuration), or they can be saved as LDAP entries, specific to the server (dynamic configuration).
The principle is relatively simple.
An access control list is a set of rules that a server must obey to determine whether a given user has the right to access a specific resource.
In the case of an LDAP directory, resources are usually individual attributes, specific entries or even complete sub-trees.
Let's take a look at what we can...
The Ultimate Scientific and Technical Reference
This article is included in
Security of information systems
This offer includes:
Knowledge Base
Updated and enriched with articles validated by our scientific committees
Services
A set of exclusive tools to complement the resources
Practical Path
Operational and didactic, to guarantee the acquisition of transversal skills
Doc & Quiz
Interactive articles with quizzes, for constructive reading
Access control
Using LDAP as a security tool
Bibliography
Appendix: configuration files
The configuration files presented here can be used to build a variety of simple certificates, enabling you to quickly set up a TLS connection as part of an LDAP server. These files are provided as examples only.
For more information on the structure of OpenSSL configuration files, see .
1 - root-ca-cert.cnf
This configuration file...
The Ultimate Scientific and Technical Reference
