3. Emmanuel Lécharny
Apache Software Foundation member
Chairman of MINA project
PMC of Apache Directory Project
elecharny@apache.org / elecharny@symas.com
8. Why cn=config ?
Configuration in LDAP
Can be replicated
Allows dynamic configuration
Protects against misconfigurations
8
9. But...
People keep using vi/Emacs
More complex than slapd.conf
You have to use
ldapadd/ldapmodify/ldapdelete
9
10. But...
« It is of course possible for a careful, clueful
admin to edit the files by hand without breaking
anything. »
« But let's face it, the majority of people out
there, and particularly the people having
problems that drive them to post on this mailing
list, are neither careful enough nor clueful
enough to qualify for these activities. »
10
12. OpenLDAP configuration plugin
Don't have to lecture people who
use text editors
Config for dummies (almost)
Many controls done by the plugin
« smart » editors
12