|
LPI Level 3 Exam 117-301: Detailed Objectives
Concepts, Architecture and Design
LDAP Concepts and Architecture
- LDAP and X.500 technical specification
- Attribute definitions
- Directory namespaces
- Distinguished names
- LDAP Data Interchange Format
- Meta-directories
- Changetype operations
Directory Design
- Define LDAP directory content
- Organize directory
- Planning appropriate Directory Information Trees
Schemas
- LDAP schema concepts
- Create and modify schemas
- Attribute and object class syntax
Installation and Development
Compiling and Installing OpenLDAP
- Compile and configure OpenLDAP from source
- Knowledge of OpenLDAP backend databases
- Manage OpenLDAP daemons
- Troubleshoot errors during installation
Developing for LDAP with Perl
- Syntax of Perl's Net::LDAP module
- Write Perl scripts to bind, search, and modify directories
Configuration
Access Control Lists in LDAP
- Plan LDAP access control lists
- Grant and revoke LDAP access permissions
- Access control syntax
LDAP Replication
- Replication concepts
- Configure OpenLDAP? replication
- Execute and manage slurpd
- Analyze replication log files
- Understand replica hubs
- LDAP referrals
- LDAP sync replication
Securing the Directory
- Securing the directory with SSL and TLS
- Firewall considerations
- Unauthenticated access methods
- User / password authentication methods
- Maintanence of SASL user DB
- Client / server certificates
LDAP Server Performance Tuning
- Measure LDAP performance
- Tune software configuration to increase performance
- Understand indexes
OpenLDAP Daemon Configuration
- slapd.conf configuration directives
- slapd.conf database definitions
- slapd and its command line options
- Analyze slapd log files
Usage
Searching the Directory
- Use OpenLDAP search tools with basic options
- Use OpenLDAP search tools with advanced options
- Optimize LDAP search queries
- Knowledge of search filters and their syntax
LDAP Command Line Tools
- Use the ldap* tools to access and modify the directory
- Use the slap* tools to access and modify the directory
Whitepages
- Plan whitepages services
- Configure whitepages services
- Configure clients to retrieve data from whitepages services
Integration and Migration
LDAP Integration with PAM and NSS
- Configure PAM to use LDAP for authentication
- Configure NSS to retrieve information from LDAP
- Configure PAM modules in various Unix environments
NIS to LDAP Migration
- Analyze NIS structure prior to migration to LDAP
- Analyze NIS structure prior to integration with LDAP
- Automate NIS to LDAP migration
- Create a NIS to LDAP gateway
Integrating LDAP with Unix Services
- Integrate
- int services with LDAP
Integrating LDAP with Samba
- Migrate from smbpasswd to LDAP
- Understand OpenLDAP Samba schema
- Understand LDAP as a Samba password backend
Integrating LDAP with Active Directory
- Kerberos integration with LDAP
- Cross platform authentication
- Single sign-on concepts
- Integration and compatibility limitations between OpenLDAP and Active Directory
Integrating LDAP with Email Services
- Plan LDAP schema structure for email services
- Create email attributes in LDAP
- Integrate Postfix with LDAP
- Integrate Sendmail with LDAP
Capacity Planning
Measure Resource Usage
- Measure CPU usage
- Measure memory usage
- Measure disk I/O
- Measure network I/O
- Measure firewalling and routing throughput
- Map client bandwidth usage
Troubleshoot Resource Problems
- Match / correlate system symptoms with likely problems
- Identify bottlenecks in a system
Analyze Demand
- Identify capacity demands
- Detail capacity needs of programs
- Determine CPU / memory needs of programs
- Assemble program needs into a complete analysis
Predict Future Resource Needs
- Predict capacity break point of a configuration
- Observe growth rate of capacity usage
- Graph the trend of capacity usage
|
