lDAP 轻量级目录访问协议

   

LDAP Basics:
http://www.davidpashley.com/articles/ldap-basics/

Understanding LDAP:
http://courses.cs.vt.edu/cs5204/fall05-kafura/Papers/Naming/PagesFromUnderstandingLDAP.pdf


ldap and jenkins(so on..):
https://www.scm-manager.com/2013/12/permission-management-with-ldap-groups/
http://blog.effy.cz/2012/09/ldap-security-for-jenkins-ci.html


Doc：
http://www.openldap.org/doc/admin24/guide.html

引用

The LDAP information model is based on entries. An entry is a collection of attributes that has a globally-unique Distinguished Name (DN). The DN is used to refer to the entry unambiguously. Each of the entry's attributes has a type and one or more values. The types are typically mnemonic strings, like "cn" for common name, or "mail" for email address. The syntax of values depend on the attribute type. For example, a cn attribute might contain the value Babs Jensen. A mail attribute might contain the value "babs@example.com". A jpegPhoto attribute would contain a photograph in the JPEG (binary) format.

How To Install and Configure a Basic LDAP Server on an Ubuntu 12.04:
https://www.digitalocean.com/community/tutorials/how-to-install-and-configure-a-basic-ldap-server-on-an-ubuntu-12-04-vps


常见 mnemonic strings：
http://stackoverflow.com/questions/18756688/what-are-cn-ou-dc-in-an-ldap-search

引用

dn - Distinguished Name
rdn - Relative DN
cn - Common Name
ou - Organizational Unit
dc - Domain Component
slapd - Standalone LDAP Daemon
LDIF - LDAP Data Interchange Format
olc - OpenLDAP Configuration

http://stackoverflow.com/questions/18756688/what-are-cn-ou-dc-in-an-ldap-search

引用

String  X.500 AttributeType
------------------------------
CN      commonName
L       localityName
ST      stateOrProvinceName
O       organizationName
OU      organizationalUnitName
C       countryName
STREET  streetAddress
DC      domainComponent
UID     userid

里头的例子，整个逗号分割的字符串：CN=Dev-India,OU=Distribution Groups,DC=gp,DC=gl,DC=google,DC=com，是一个DN。读的顺序是right to left，so：