====== Kerberos/OpenLDAP guides on the net ======

This is a list of online guides for setting up Kerberos with LDAP back-end.




===== List of Kerberos/OpenLDAP guides =====


Deploying a secure Kerberos/LDAP system is probably the most challenging task a system administrator can have. This page contains a list of reliable resources on how to configure a Kerberos system with OpenLDAP back-end.

 * [[http://www.openinput.com/auth-howto/|Central authentication server HOWTO]]: This is a very exhaustive (really detailed) guide on configuring LDAP and back-end database for Kerberos and for securing LDAP access using Kerberos (two-ways).

 * [[https://help.ubuntu.com/9.04/serverguide/C/kerberos-ldap.html|Ubuntu Kerberos/OpenLdap guide]] : This is a comprehensive guide on configuring OpenLDAP as a database back-end for Kerberos KDCs on Ubuntu/Debian servers.

 * [[http://web.mit.edu/kerberos/krb5-1.6/krb5-1.6.3/doc/krb5-admin.html#Configuring-Kerberos-with-OpenLDAP-back_002dend|MIT guide for OpenLDAP integration]] : This guide provides guidelines for configuring OpenLDAP and MIT Kerberos to work together.

 * [[http://www.bayour.com/LDAPv3-HOWTO.html|Kerberos, LDAPv3 and SASL Howto by Turbo Fredriksson]] : This howto explains how to Kerberize LDAP. i.e. how to make access to the LDAP database protected using Kerberos. This is different from setting up LDAP as a database back-end to Kerberos.



//Have you deployed a Kerberos system with an LDAP back-end ? which guides have you followed ? Please share your experiences.//


===== Resources =====
Local copies of the guides listed above are available :


  * {{technotes:krb5-ldap-ubuntu.pdf|Ubuntu Kerberos/OpenLdap guide}}

  * {{technotes:krb5-admin-mit.pdf|MIT guide for OpenLDAP integration}}

  * {{technotes:ldap-krb5-ulf.pdf|Kerberos, LDAPv3 and SASL Howto by Turbo Fredriksson}}

{{tag>security howto unix}}


~~DISCUSSION~~