mail us  |  mail this page

products  |  company  |  support  |  training  |  contact us

ZYTRAX OPEN LOGO

LDAP for Rocket Scientists - Change Log

The changes made since the previous revision of this document. We constantly update the on-line text and note the changes made in this log for the next version. When we publish - periodically - a new version the changes noted here may already have been available on-line for some time.

Version 0.1.16 April 2nd, 2015

  • General - Progressive addition of ApacheDS material and update to OpenLDAP 2.4+.
  • General - Progressive change to use olc (cn=config) for all configuration.
  • Chapter 2 - Typos, wording changes and diagram update. Refomatted for HTML5.
  • Chapter 3 - Typos, OLC update, wording clarification and updated diagrams.
  • Chapter 5 - Step 1 - reworkrd text describing < file: format in LDIF to reflect current OpenLDAP format (which is different to RFC2849).
  • Chapter 5 - reworked to use OLC by default - slapd.conf pages saved as -file and linked.
  • Chapter 6 - olcAccess (Access to) clarified use of 'manage' permission.
  • Chapter 6 - include statement reference to OLC (cn=config).
  • Chapter 6 - correction: slapd.d files need 0750 in latest releases.
  • Chapter 6 - manual deletion of Database procedure documented with OLC.
  • Chapter 6 - ppolicy - correction of last fragment in page change from pwdPolicy to pwdPolicySubentry. Converted to HTML5.
  • Chapter 7 - updated text and diagrams to cover OLC (cn=config). Reformatted for HTML5.
  • Chapter 7 - Aliases - corrected text errors. Refomatted for HTML5.
  • Chapter 9 - Fixed error links to dyngroup.schema. Reformatted to HTML5.
  • Chapter 9 - Typo in memberURL.
  • Chapter 14 - minor note and link added to Apache Directory Studio for use as an LDAP browser and client.
  • Appendix A - Additional information and diagrams on DNs for Authentication.
  • Appendix E - config.ldif increased links. Convert to HTML5.
  • Version 0.1.15 July 26th, 2013

  • General - Progressive addition of ApacheDS material and update to OpenLDAP 2.4+.
  • Chapter 2 - Rewording of text to improve clarity - hopefully.
  • Chapter 3 - minor clarifications to x-ordered attribute description and correction of minor typos.
  • Chapter 4 - updated Win2k section to OpenLDAP for Windows distribution - notes on use of cygwin or ApacheDS on windows.
  • Chapter 5 - correction of minor typos.
  • Chapter 5 - 5.1.7 correction of jpegphoto:< file:// format error (incorrect space present).
  • Chapter 5 - Step 3, correction of minor typos.
  • Chapter 5 - Step 4, correction of minor typos, fix uids in 5.4.6.
  • Chapter 6 - additional linkage - minor text revisions.
  • Chapter 6 - Indexing - incorrect definition of subinitial and subfinal.
  • Chapter 6 - ppolicy - corrected attribute name to pwdLockout in unlocking account section.
  • Chapter 7 - additional note about syncing with obsoleted slurpd.
  • Chapter 7 - clarification of syncing procedure with replication - applies to both slurpd and syncrepl.
  • Chapter 7 - referrals - text clarifications. Added procedure and notes about deleting referral entry.
  • Chapter 7 - Aliases - new section - definition and description with examples.
  • Chapter 8 - correct HTML format errors.
  • Chapter 14 - typos and replicated arguments in ldapadd,ldapmodify.
  • Chapter 14 - argument -M added usage note - needed to delete referral.
  • Appendix A - LDAP Data types - formatting changes and minor clarifications on Integer type.
  • Appendix A - Indexing - incorrect definition of subinitial and subfinal.
  • Appendix A - LDAP OIDs - minor formatting changes.
  • Appendix A - LDAP Component matching - incorrect RFC reference.
  • Appendix C - Updated RFCs.
  • Appendix D - Glossary - minor clarification changes.
  • Appendix E - Objects - Formatting changes.
  • Version 0.1.14 May 16th, 2012

    1. General - Progressive addition of ApacheDS material and update to OpenLDAP 2.4+.
    2. General - Updated references from Fedora Directory Server to 389 Directory Server.
    3. Chapter 2 - text revisions and minor extensions to improve readability - it is hoped.
    4. Chapter 3 - description of the non-standard attribute feature X-ORDERED used on OLC (cn=config).
    5. Chapter 3 - minor revisions and extensions to improve readability.
    6. Chapter 4 - updated ApacheDS Windows installation guide to confirm no change to install for Windows 7.
    7. Chapter 6 - cn=config, erroneous oldRootDn reference corected to olcRootDn in a note.
    8. Chapter 6 - add reference to dynlist (dynamic Groups) overlay.
    9. Chapter 6 - add dynlist overlay description.
    10. Chapter 6 - Change of terminology when describing cn=config from real-time configuration (rtc) to on-line configuration (OLC) to reflect the use of 'olc' to prefix directive names.
    11. Chapter 6 - Addition of olc (cn=config) names to all documented configuration directives.
    12. Chapter 6 - Addition of objectClasses used in OLC (cn=config).
    13. Chapter 6 - Addition of usage notes for OLC (cn=config) to cover common tasks such as adding schemas, ACLs, modules, databases and overlays.
    14. Chapter 6 - syncprov overlay - added OLC (cn=config) names.
    15. Chapter 9 - add localhost search URL example.
    16. Chapter 11 - Added new note on Dynamic Groups
    17. Chapter 12 - Additional notes on error types
    18. Chapter 14 - LDAPBrowser/Editor documentation. Fixed broken local link.
    19. Chapter 14 - Added -n flag for slaptest. Additional and modified explanations. Additional examples.
    20. Appendix A - Component Search filters - correction to syntax and fixing an error in one example.
    21. Appendix D - Added missing definition of name scope.
    22. Appendix E - Added dyngroup.schema for Dynamic Groups and misc.schema.
    23. Appendix E - config.ldif (cn=config) - added browsing features.
    24. Appendix E - correction to inetOrgPerson objectclass hierarchy.

    Version 0.1.13 10th November 2011

    1. General - Progressive addition of ApacheDS material and update to OpenLDAP 2.4+.
    2. Chapter 2 - Addition of notes on DNs used for Authentication. Typos.
    3. Chapter 2 - Section 2.4.1 change from 'each parent may have one or more children' to 'each parent mare have zero or more children'.
    4. Chapter 3 - Typos.
    5. Chapter 5 Section 5.1.4 - Addition of notes on DNs used for Authentication.
    6. Chapter 11 Error in howto set up groups - incorrectly defined dc=groups, corrected to ou=groups..
    7. Chapter 14 ldadelete missing 'dn:' from second line of ldapmodify example at begining of section.
    8. Appendix A - New note on DNs used for Authentication (Bind DN or Principal DN).
    9. Appendix A - Addition of cross-refs to Bind DN note.
    10. Appendix D - Addition of Principal DN definition.

    Version 0.1.12 4th August 2010

    1. General - Progressive addition of ApacheDS material and update to OpenLDAP 2.4+.
    2. Implementations Page - Minor rewording.
    3. Contents Page - Correction of multiple broken links in Chapter 11.
    4. Chapter 2 - Correction of two references to Relatively Distinguished Name to relative Distinguished Name.
    5. Chapter 3 - Explanation of the USAGE attribute definition value.
    6. Chapter 4 - Update to ApacheDS installation procedures.
    7. Chapter 5 - Section 5.3.4 Updated ACLs following re-testing on OpenLDAP 2.4.16+.
    8. Chapter 6 - Diagram used in the 'Access to' example section titled Public and Private Address Books was incorrect. The ACL from this section contained a note about the use of ,expand when used with 2.4. The text of the accompanying notes has been updated to reflect the ACL note.
    9. Chapter 6 - Removal of duplicate text.
    10. Chapter 6 - Revised text on the group and peername statements of Access to directive, reflecting recent changes.
    11. Chapter 9 - Replacement of Ethereal with wireshark.
    12. Chapter 12 - Update to error messages.
    13. Chapter 14 - Update to LDAP Browser/Editor link.
    14. Chapter 14 - Minor update to slappasswd example text.
    15. Appendix A - Additional text in DN/RDN description.
    16. Appendix A - Minor changes to ASN.1.
    17. Appendix A - Additional text on defining root/suffix name.
    18. Appendix A - New sections on defining X.500, RFC 2247 and simple root/suffix names.
    19. Appendix B - Update to LDAP Browser/Editor link.
    20. Appendix C - Update to RFCs.
    21. Appendix D - minor error in the description of entryCSN, additional detail on contextCSN, CSN and entryCSN descriptions. Link corrections. Spelling corrections.
    22. Appendix D - Additional detail on naming contexts.

    Version 0.1.11 12th July 2009

    1. General - Progressive addition of ApacheDS material and update to OpenLDAP 2.4+.
    2. Chapter 1 - minor text changes.
    3. Chapter 2 - minor text changes.
    4. Chapter 3 - Addition of parent, child and sibling entry definitions in section 3.1 - additional minor clarifications and links added throughout.
    5. Chapter 5 - minor text changes.
    6. Chapter 6 - Additional notes on URL form of ServerID and minor clarifications.
    7. Chapter 6 - Addition of password-hash directive.
    8. Chapter 6 - Addition of Password Policy Overlay (ppolicy) description
    9. Chapter 6 - Availability of an enhanced version of ppolicy
    10. Chapter 14 - Update to the status of LDAP Browser/Editor.
    11. Appendix A - Data Types - Additional notes on Integer data type.
    12. Appendix A - Correction of link to components matching search filter.
    13. Appendix A - OID - Update references to the old oid.elibel.tm.fr site to www.oid-info.com.
    14. Appendix A - Notes on ObjectClass Inheritance
    15. Appendix B - Update references to the old oid.elibel.tm.fr site to www.oid-info.com.
    16. Appendix B - Update references LDAP Browser/Editor. Addition of Apache LDAP Studio to LDAP browser list.

    Version 0.1.10 October 26th 2008

    1. General - Progressive addition of ApacheDS material and update to OpenLDAP 2.4+.
    2. Index/Contents - update to reflect new sections
    3. Chapter 1 - Typo.
    4. Chapter 2 - Correction to the LDAIF file at 2.4.4 which incorrectly showed inetOrgPerson used for ou=people.
    5. Chapter 2 - Revised text on LDAP vs RDBMS. Minor corrections and updated links.
    6. Chapter 3 - Updated text (add entry description in overview) and updated/additional diagrams. Minor corrections and updated links.
    7. Chapter 3 - Updated rootDSE to 2.4.x.
    8. Chapter 5 - Section 5.3.1 corrected diagram
    9. Chapter 6 - Access directive dn.dnstyle - change to default of base (exact) was regex until 2.2+
    10. Chapter 6 - Access directive revised documentation on break control word
    11. Chapter 6 - BDB update references to oracle site from old sleepycat.com site.
    12. Chapter 6 - Corrections to converting slapd.conf to cn=config.
    13. Chapter 6 - Inclusion of index directive (previously referenced only through Appendix A) and mirrormode directives.
    14. Chapter 6 - Updated documentation for syncprov and accesslog overlay.
    15. Chapter 6 - Updated documentation for rootpw directive.
    16. Chapter 6 - Updated documentation for syncrepl directive.
    17. Chapter 6 - Inclusion of slapd.conf TLS directives
    18. Chapter 6 - Some ldap.conf directives (TLS_CACERT)
    19. Chapter 6 - Spell checked!
    20. Chapter 7 - Spell checked!
    21. Chapter 7 - Corrections and updates to syncrepl, delta-sync and N-Way multi-mastering configurations following testing with 2.4.11.
    22. Chapter 8 - Corrections to LDIF files and text when using ldapadd/ldapmodify to reflect the fact that assumptions are no longer made by these utilities.
    23. Chapter 11 - Additional Howtos (TLS and Security)
    24. Chapter 11 - Notes moved to Appendix A
    25. Chapter 12 - additional causes on some error messages
    26. Chapter 12 - additional error messages
    27. Chapter 14 - re-order of ldapsearch arguments
    28. Chapter 14 - re-order of ldapadd/ldapmodify arguments - update to 2.4+
    29. Chapter 14 - re-order of ldapdelete arguments and notes about file format (-f)
    30. Chapter 14 - Addition of LDAPBrowser/Editor usage and configuration information.
    31. Chapter 14 - Addition of slapd command line options.
    32. Chapter 15 - Security Overview. Placeholders for SASL and TLS configuration.
    33. Chapter 15 - TLS configurations.
    34. Appendix A - New section on survival ASN.1
    35. Appendix A - Moved Notes from chapter 11 to Appendix A
    36. Appendix A - Data Types - minor correction to DirectoryString definition.
    37. Appendix A - New section - Component Matching Search Filters - incomplete because it does not currently work in OpenLDAP 2.4.8
    38. Appendix B - Update to resources
    39. Appendix C - Update to RFCs (RFCs 3641 and 4792)

    Version 0.1.9 1st February 2008

    1. General - Progressive addition of ApacheDS material and update to OpenLDAP 2.4+.
    2. Index/Contents - Updated
    3. Chapter 2 - Addition of section summarizing LDAP advantages. Minor corrections.
    4. Chapter 2 - Expansion and Rework of Referral and Replication Section.
    5. Chapter 3 - Attributes - additional text.
    6. Chapter 6 - Renaming of chapter to Configuration Files (covers OpenLDAP's slapd.conf, ldap.conf and ApacheDS's server.xml file).
    7. Chapter 6 - OpenLDAP's LogLevel - additional detail, directory - minor corrections.
    8. Chapter 6 - OpenLDAP's access to <what> - change to attrs (was attr) seems that OpenLDAP is trying to remove attr, change to use of expand modifier with regex.
    9. Chapter 6 - add OpenLDAP's overlay, replica, replogfile, syncrepl, readonly, updatedn, updateref, replicationinterval, referral, moduleload and modulepath directives
    10. Chapter 6 - OpenLDAP - overlay documentation for accesslog, chain, syncprov (replication). Placeholders for pcache (proxy), ppolicy (password policy), rwm (re-write DN).
    11. Chapter 6 - OpenLDAP - conversion to cn=config
    12. Chapter 7 - Renaming of chapter to Replication and Referrals.
    13. Chapter 7 - 7.2 Replication (slurpd and syncrepl).
    14. Chapter 7 - 7.2 Replication syncrepl N-Way Multi-Master.
    15. Chapter 7 - 7.2 Replication syncrepl delta synchronization.
    16. Chapter 7 - 7.3 Referral and Chaining.
    17. Chapter 8 - LDIF deleting attributes and entries - additional detail.
    18. Chapter 8 - DSML Placemarker.
    19. Chapter 9 - LDAP URLs - minor corrections and clarifications. Updated to RFC 4516. Changes to use example.com
    20. Chapter 11 - add slurpd, referrals, referral chaing, syncrepl, delta synchronization
    21. Chapter 14 - LDAP Tools - update ldapsearch to version 2.4+
    22. Chapter 14 - LDAP Tools - update slapadd to version 2.4+
    23. Chapter 14 - LDAP Tools - update slapcat to version 2.4+
    24. Chapter 14 - LDAP Tools - update slapindex to version 2.4+
    25. Chapter 14 - LDAP Tools - addition of ldappasswd and slaptest documentation
    26. Appendix A - OIDs - additional detail.
    27. Appendix A - search filters - minor corrections. Update to RFC 4515 (including extensible matching).
    28. Appendix A - DNs-RDNs - clarification that it is the data content of an attribute that creates the DN/RDN.
    29. Appendix B - Updates to Open Source LDAP servers.
    30. Appendix C - RFC updates.
    31. Appendix D - ASN.1 - better link. Additional Entries.
    32. Appendix E - Added cn=config cn=schema.ldif file.

    Version 0.1.8 December 21st 2007

    1. General - Progressive addition of Open Source ApacheDS material.
    2. Chapter 4 - Addition of OpenLDAP and ApacheDS installation.
    3. Chapter 5 - Removal of version: 1 tag and associated comments in LDIF files due to problems with OpenLDAP 2.2+
    4. Chapter 8 - error in newrdn statements - must include the objectclass
    5. Appendix B - Addition of Apache Directory Server and other tools, Update to LDAPBrowser/Editor link
    6. Appendix C - update of RFC list

    Version 0.1.7 22nd March 2007

    1. General - progressive change from mydomain.com to example.com.
    2. Chapter 3 - ABSTRACT typo (was ABTRACT)
    3. Chapter 5 - minor typo
    4. Chapter 6 - bdb searchstack prototype incorrect
    5. Appendix A - Root Name Angst - clarification of wording
    6. Appendix A - OID - correction of OpenLDAP OID to 1.3.6.1.4.1.4203 (incorrectly defined as 4303) and minor typos
    7. Appendix D - Addition of Organizational Unit to definitions.

    Version 0.1.6 19th January 2006

    1. General - progressive change from mydomain.com to example.com.
    2. Chapter 3 - objectClass is an attribute and can be searched on
    3. Chapter 5 - Steps 1, 2, 3, 4 - slapd.conf added note on index objectClass

    Version 0.1.5 January 2006

    1. Contents
    2. General - progressive change from mydomain.com to example.com.
    3. Chapter 5 - Step 1, 2, 3 and 4 - removal of dbnoync, dirtyread, searchstack directives from slad.conf files
    4. Chapter 5 - Step 1, 2, 3 and 4 - change to index sn eq,sub (removes superfluous subinitial, subany and subfinal) directive from slad.conf files
    5. Chapter 5 - Step 4 - addition of comments to objectclass and attributes
    6. Chapter 5 - Step 4 - change location of slapd.sh start/stop script for [bsd]
    7. Chapter 5 - Step 5 - single-sign-on SSO - incomplete placeholder
    8. Chapter 11 - Minor corrections to multi-dit explantion
    9. Appendix A - RDN-DN clarification of when a DN must be unique and when not.

    Version 0.1.4 24th October 2004

    1. Contents
    2. Chapter 1 and 2 - many grammatical corrections and clarifications - thanks to Seemant Kulleen
    3. Chapter 6 - minor corrections to rootDSE parameter
    4. Appendix E - addition of userPassword to x-refed list

    Version 0.1.3 5th September 2004

    1. Contents
    2. Contents - corrections to Chapter 5 numbering
    3. Chapter 5 - corrections to section numbering
    4. Appendix E - LDAP Objects and Schemas - cross referenced samba, courier and qmail schema.

    Version 0.1.2 10th August 2004

    1. Contents
    2. Chapter 5 - Major error in LDIF for step 1 rejected by LDAP 2.2
    3. Appendix B - LDAP Resources - added some web site references.
    4. Appendix C - LDAP RFCs - added RFC 3829, 3866 and 3045.
    5. Appendix E - LDAP Objects and Schemas - added samba3 and courier (email) schemas.

    Version 0.1.1 24 July 2004

    1. Contents
    2. Chapter 5 - Samples - Create & Add ObjectClasses, Attributes and Schemas
    3. Chapter 11 - HOWTO Configure Groups of Users
    4. Chapter 11 - HOWTO Configure Multiple DITs
    5. Appendix B - LDAP Resources - bad URL for LDAP Browser/editor - added some comments about tools.

    Version 0.1.0 21 June 2004

    1. Contents
    2. Chapter 1 - Boiler Plate and Terminology
    3. Chapter 2 - LDAP Overview
    4. Chapter 3 - LDAP Schemas, objectClasses, Attributes
    5. Chapter 5 - Samples - basic directory
    6. Chapter 5 - Samples - security enhancement
    7. Chapter 5 - Samples - Expanding Hierarchy
    8. Chapter 6 - slapd.conf - access
    9. Chapter 6 - slapd.conf - argsfile
    10. Chapter 6 - slapd.conf - attributetype
    11. Chapter 6 - slapd.conf - concurrency
    12. Chapter 6 - slapd.conf - conn_max_pending
    13. Chapter 6 - slapd.conf - conn_max_auth
    14. Chapter 6 - slapd.conf - defaultsearchbase
    15. Chapter 6 - slapd.conf - gentlehup
    16. Chapter 6 - slapd.conf - idletimeout
    17. Chapter 6 - slapd.conf - include
    18. Chapter 6 - slapd.conf - loglevel
    19. Chapter 6 - slapd.conf - objectclass
    20. Chapter 6 - slapd.conf - pidfile
    21. Chapter 6 - slapd.conf - referral
    22. Chapter 6 - slapd.conf - schemadn
    23. Chapter 6 - slapd.conf - sizelimit
    24. Chapter 6 - slapd.conf - sockbuf_max_incoming
    25. Chapter 6 - slapd.conf - sockbuf_max_incoming_auth
    26. Chapter 6 - slapd.conf - threads
    27. Chapter 6 - slapd.conf - timelimit
    28. Chapter 6 - slapd.conf - database - bdb
    29. Chapter 6 - slapd.conf - rootpw
    30. Chapter 6 - slapd.conf - suffix
    31. Chapter 6 - slapd.conf - rootdn
    32. Chapter 8 - LDIF - format
    33. Chapter 9 - LDAP URLs
    34. Appendix A - Notes and Explanations - Root Angst
    35. Appendix A - Notes and Explanations - DN and RDN
    36. Appendix A - Notes and Explanations - Multiple DITs
    37. Appendix A - Notes and Explanations - Search Filters
    38. Appendix A - Notes and Explanations - OIDs
    39. Appendix A - Notes and Explanations - LDIF defining the object hierarchy
    40. Appendix A - Notes and Explanations - LDAP Data types
    41. Appendix B - LDAP Resources
    42. Appendix C - RFC's and X.500 Standards
    43. Appendix D - Glossary
    44. Appendix E - Common Object Classes and Attributes


    Problems, comments, suggestions, corrections (including broken links) or something to add? Please take the time from a busy life to 'mail us' (at top of screen), the webmaster (below) or info-support at zytrax. You will have a warm inner glow for the rest of the day.

    Copyright © 1994 - 2015 ZyTrax, Inc.
    All rights reserved. Legal and Privacy
    site by zytrax
    Hosted by super.net.sg
    web-master at zytrax
    Page modified: April 01 2015.

    Contents

    tech info
    guides home
    intro
    contents
    1 objectives
    big picture
    2 concepts
    3 ldap objects
    quickstart
    4 install ldap
    5 samples
    6 configuration
    7 replica & refer
    reference
    8 ldif
    9 protocol
    10 ldap api
    operations
    11 howtos
    12 trouble
    13 performance
    14 ldap tools
    security
    15 security
    appendices
    notes & info
    ldap resources
    rfc's & x.500
    glossary
    ldap objects
    change log

    Creative Commons License
    This work is licensed under a Creative Commons License.

    If you are happy it's OK - but your browser is giving a less than optimal experience on our site. You could, at no charge, upgrade to a W3C STANDARDS COMPLIANT browser such as Firefox

    web zytrax.com

    Share Page

    share page via facebook tweet this page submit page to stumbleupon submit page to reddit.com

    Page Features

    Page comment feature Send to a friend feature print this page Decrease font size Increase font size

    RSS Feed Icon RSS Feed

    Resources

    Systems

    FreeBSD
    NetBSD
    OpenBSD
    DragonFlyBSD
    Linux.org
    Debian Linux

    Applications

    LibreOffice
    OpenOffice
    Mozilla
    SourceForge
    GNU-Free SW Foundation

    Organisations

    Open Source Initiative
    Creative Commons

    Misc.

    Ibiblio - Library
    Open Book Project
    Open Directory
    Wikipedia

    SPF Resources

    Draft RFC
    SPF Web Site
    SPF Testing
    SPF Testing (member only)

    Display full width page Full width page

    Print this page Print this page

    SPF Record Conformant Domain Logo