[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Have you seen this FUD - IT pros suffer OpenLDAP configuration headaches ?

To: Turbo Fredriksson <turbo@bayour.com>, OpenLDAP Technical <openldap-technical@OpenLDAP.org>
Subject: Re: Have you seen this FUD - IT pros suffer OpenLDAP configuration headaches ?
From: Howard Chu <hyc@symas.com>
Date: Thu, 30 Jan 2014 09:59:32 -0800
In-reply-to: <DBB1B1AD-EE28-4E1E-AF18-9974DC9CC06B@bayour.com>
References: <CAPcb_GK5B=-PzNuxY8wNkh+n-FRhnv0snDAcLYxjqhun1H97Bw@mail.gmail.com> <52EA7F3D.2090905@symas.com> <DBB1B1AD-EE28-4E1E-AF18-9974DC9CC06B@bayour.com>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:29.0) Gecko/20100101 Firefox/29.0 SeaMonkey/2.26a1

Turbo Fredriksson wrote:

On Jan 30, 2014, at 5:35 PM, Howard Chu wrote:

I saw some of this on twitter before, ignored it since none of the parties involved have any clue what they're talking about.



Personally, I think it's spot on. It IS hard to configure an LDAP server, and
even harder to understand how it works (the object based part). Took me three
months first time, and I'm not an idiot.


The object based part is *LDAP*, so that complaint is not specific to OpenLDAP.

The part about RedHat seems fairly accurate to me, it *is* true that they havetheir own commercial LDAP server to sell, and they have no great interest inOpenLDAP working well on their platforms.

Even today, I need to consult either my own book or the howto (or seriously
skim through the man pages) to setup a new server.

And I still need to read the docs when configuring an Apache HTTP server.That's why we have manpages, there's nothing wrong about that.

And even worse if when you want to optimize the backend... There's a lot of
magic there....

The LMDB backend has no tuning/optimization. That's one of the reasons itexists today.

And with the new config backend!? I haven't even had the time or energy to go
that far yet!

I think you (and everyone else) are blowing this way out of proportion.Compare the example from here


http://www.openldap.org/doc/admin24/slapdconf2.html#Configuration%20Example

to the slapd.conf example

http://www.openldap.org/doc/admin24/slapdconfig.html#Configuration%20File%20Example

They aren't that different, and anyone familiar with slapd.conf and LDIF filesshould have no trouble mapping concepts from one to the other.

And if you aren't familiar with slapd.conf *and* LDIF then you don't knowenough to be an OpenLDAP administrator in the first place, you need to do morehomework. That's just life.


--
   -- Howard Chu
   CTO, Symas Corp.           http://www.symas.com
   Director, Highland Sun     http://highlandsun.com/hyc/
   Chief Architect, OpenLDAP  http://www.openldap.org/project/

References:
- Have you seen this FUD - IT pros suffer OpenLDAP configuration headaches ?
  - From: Gavin Henry <ghenry@suretec.co.uk>
- Re: Have you seen this FUD - IT pros suffer OpenLDAP configuration headaches ?
  - From: Howard Chu <hyc@symas.com>
- Re: Have you seen this FUD - IT pros suffer OpenLDAP configuration headaches ?
  - From: Turbo Fredriksson <turbo@bayour.com>

Prev by Date: Re: Have you seen this FUD - IT pros suffer OpenLDAP configuration headaches ?
Next by Date: Re: Have you seen this FUD - IT pros suffer OpenLDAP configuration headaches ?
Index(es):
- Chronological
- Thread