The software nss_ldap is a C library extension that is compliant with RFC 2307.
Some of the noteworthy features of the nss_ldap system include support for RFC 2307/RFC 2307bis, netgroups and user-defined schema, implementation across platforms, support for Kerberos and SSL authentication, compatibility with pam_ldap configuration files, bootstrapping from DNS using SRV records, and various name service switches. This system also supports RFC 2307bis groups, nested groups, and specific Active Directory support such as incremental retrieval of multi-valued attributes. Furthermore, nss_ldap facilitates directory-based authentication for systems that lack PAM, like AIX 4.3.3, which is an additional advantage.
To use nss_ldap, you need to meet several requirements, which include AIX 4.3.3 and above, FreeBSD 5.1, HP-UX 11i, Linux, and Solaris 2.6 and above. Additionally, nss_ldap requires an LDAP client library and an optional SASL library compatible with the Cyrus SASL API.
In the latest release, several new features have been added. For instance, support for automounts on Solaris has been added, while AIX support and Active Directory performance have been improved. Also, RFC2307bis and paged results support are now compiled in by default, new server reconnection logic has been added, and numerous bug fixes have been implemented.
Overall, nss_ldap is a tremendously useful library extension that offers a seamless solution for accessing LDAP directories from various platforms. Its compatibility with a few of the most popular operating systems and integration with SASL and Cyrus SASL API makes it very versatile. Hence, it proves to be a reliable system that offers an impressive amount of functionality.
Version 248: N/A