Upload File

michael ströderdate: 19.09.00slide 1 datei:...

  • Home
  • Documents
  • Michael StröderDate: 19.09.00Slide 1 Datei: /home/michael/Bizness/SURFnet/web2ldap_presentation_TF-LSD.sdd web2ldap Personal info Michael Ströder
10
Michael Ströder Date: 19.09.00 Slide 1 Datei: /home/michael/Bizness/SURFnet/web2ldap_presentation_TF- LSD.sdd web2ldap Personal info Michael Ströder Freelancer Focus on PKI / LDAP Presentation of PKI features in http://web2ldap.de

Upload: allan-lane

Post on 05-Jan-2016

212 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: Michael StröderDate: 19.09.00Slide 1 Datei: /home/michael/Bizness/SURFnet/web2ldap_presentation_TF-LSD.sdd web2ldap Personal info Michael Ströder

Michael Ströder Date: 19.09.00 Slide 1 Datei: /home/michael/Bizness/SURFnet/web2ldap_presentation_TF-LSD.sdd

web2ldap

Personal info Michael Ströder Freelancer Focus on PKI / LDAP

Presentation of PKI features in http://web2ldap.de

Page 2: Michael StröderDate: 19.09.00Slide 1 Datei: /home/michael/Bizness/SURFnet/web2ldap_presentation_TF-LSD.sdd web2ldap Personal info Michael Ströder

Michael Ströder Date: 19.09.00 Slide 2 Datei: /home/michael/Bizness/SURFnet/web2ldap_presentation_TF-LSD.sdd

Overview

Intro Features Limitations Enhancements Demo / Discussion

Page 3: Michael StröderDate: 19.09.00Slide 1 Datei: /home/michael/Bizness/SURFnet/web2ldap_presentation_TF-LSD.sdd web2ldap Personal info Michael Ströder

Michael Ströder Date: 19.09.00 Slide 3 Datei: /home/michael/Bizness/SURFnet/web2ldap_presentation_TF-LSD.sdd

Intro

Started in diploma thesis Simple search and download tool for

certificates stored on LDAP server Add / modify entries

Page 4: Michael StröderDate: 19.09.00Slide 1 Datei: /home/michael/Bizness/SURFnet/web2ldap_presentation_TF-LSD.sdd web2ldap Personal info Michael Ströder

Michael Ströder Date: 19.09.00 Slide 4 Datei: /home/michael/Bizness/SURFnet/web2ldap_presentation_TF-LSD.sdd

Features (1)

Stand-alone or through CGI of web server on Unix and Windows

Best viewed with any browser (CSS for formatting)

Handling of NON-ASCII character sets

Page 5: Michael StröderDate: 19.09.00Slide 1 Datei: /home/michael/Bizness/SURFnet/web2ldap_presentation_TF-LSD.sdd web2ldap Personal info Michael Ströder

Michael Ströder Date: 19.09.00 Slide 5 Datei: /home/michael/Bizness/SURFnet/web2ldap_presentation_TF-LSD.sdd

Features (2)

Many output formats for exports (LDIF, vCard, DSML)

Customization possible but reasonable defaults

Page 6: Michael StröderDate: 19.09.00Slide 1 Datei: /home/michael/Bizness/SURFnet/web2ldap_presentation_TF-LSD.sdd web2ldap Personal info Michael Ströder

Michael Ströder Date: 19.09.00 Slide 6 Datei: /home/michael/Bizness/SURFnet/web2ldap_presentation_TF-LSD.sdd

Features (3) - PKI

Many different standards for storing certificates in directory

Directory server itself is not trustworthy

Display and handle certificates directly instead storing many certificate-related attributes

Page 7: Michael StröderDate: 19.09.00Slide 1 Datei: /home/michael/Bizness/SURFnet/web2ldap_presentation_TF-LSD.sdd web2ldap Personal info Michael Ströder

Michael Ströder Date: 19.09.00 Slide 7 Datei: /home/michael/Bizness/SURFnet/web2ldap_presentation_TF-LSD.sdd

Limitations

Uses python-ldap module built with OpenLDAP 1.2.x libs limited to LDAPv2

WWW-Interface (stateless HTTP)

Page 8: Michael StröderDate: 19.09.00Slide 1 Datei: /home/michael/Bizness/SURFnet/web2ldap_presentation_TF-LSD.sdd web2ldap Personal info Michael Ströder

Michael Ströder Date: 19.09.00 Slide 8 Datei: /home/michael/Bizness/SURFnet/web2ldap_presentation_TF-LSD.sdd

Road Map

Web session managment(passwords, re-use LDAP connections)

LDAPv3 (Referrals, Schema) Improve exports (DSML, vCard) Advanced Authentication Schemes

(Kerberos, SASL)

Page 9: Michael StröderDate: 19.09.00Slide 1 Datei: /home/michael/Bizness/SURFnet/web2ldap_presentation_TF-LSD.sdd web2ldap Personal info Michael Ströder

Michael Ströder Date: 19.09.00 Slide 9 Datei: /home/michael/Bizness/SURFnet/web2ldap_presentation_TF-LSD.sdd

Ideas

Complete certificate validation DSML engine Windowing GUI with wxWindows

(Windows and Unix)

Page 10: Michael StröderDate: 19.09.00Slide 1 Datei: /home/michael/Bizness/SURFnet/web2ldap_presentation_TF-LSD.sdd web2ldap Personal info Michael Ströder

Michael Ströder Date: 19.09.00 Slide 10 Datei: /home/michael/Bizness/SURFnet/web2ldap_presentation_TF-LSD.sdd

Discussion

Required features?Referrals, GUI

Authentication Schemes (Kerberos, vs. SASL), Encryption (LDAPS vs. STARTTLS)

Let's browse your favourite LDAP server! (preferrably with certs ;-)


Mebelnyi bizness - october2014

HSB15 - Xander Jansen - SURFnet

ZoomCharts on Dienas Bizness

Atbildīgs bizness 2015

Surfnet utrecht

Bizness info Aturay

SURFnet ‘BoD’

GHG audits @ SURFnet – Longitudinal effects Albert Hankel, SURFnet

Bizness Apps Webinar - 10/11/12

Bizness Apps Mobile App Showcase

Bayar Bat Bizness Tuluwluguu Duusaw

Innoblue - Bizness

Bizness Magazine Purim 2014

Monitoring @SURFnet

SGI13 - Vergroenen ván ICT - SURFnet, groen en cloud ontwikkelingen - Rogier Spoor (SURFnet)

bizness tuluvlult

(Tam sayfa foto raf) - bizness enabler

Lēmumi biznesā: Prezentācija Bizness Expo 2013 konferencē

HURL GURL vol1 BUBS FISHY BIZNESS

Bizness konkurētspējas atjaunošanai

SURFnet overview

I-Soft Bizness

Dynamic Lightpaths - in SURFnet and Beyond - TERENA fileDynamic Lightpaths - in SURFnet and Beyond Bram Peeters, Gerben Van Malenstein, Hans Trompert – SURFnet Terena E2E workshop

politika bizness

Managed Dark Fiber @SURFnet

Speed bizness CAC diaporama Agence Services Premium

Bizness Apps Webinar - 11/14/12

Atbildīgs bizness 2013. Žurnāla IR pielikums

“Tradīcijas un bizness”

An introduction to SURFnet · PDF fileAn introduction to SURFnet Bram Peeters Head of Network Services . SURFnet: your NREN - SURFnet is the Dutch National Research & Education Network

Bizness Magazine Purim II 2014

Bizness katalog

Mebelnyi bizness - august2014

Progress 4G pilot at SURFnet Maurice van den Akker Team Manager Mobile Connectivity SURFnet

Bizness Apps Reseller - Getting Started