Tuesday February 15, 2005 Welcome to CEC 2005
Well, I've decided to compete for Hal Stern's Award for CEC in a way. I will attending CEC as a Speaker Of Great Things; two of my submissions were accepted and I will be talking until my voice fades into the pacific sunset.
My first discussion will center around TLS in Native LDAP, LDAP as a Naming Service, etc. When I first encountered the references to TLS, I was equally confused and I plan to de-mystify it as best as I can:
1. Short history and definition of TLS and SSL
2. The TLS "handshake"
3. Certificates and Trusts and terminology;
4. StartTLS review
5. Step-by-Step Configuration of Directory Server 5.2 and Solaris 8/9 and TLS
6. Other TLS things
My second discussion will center around PAM (Pluggable Authentication Modules) in Native LDAP, LDAP as a Naming Service, etc. I am still confused, but I will share my troubles and lessons:
1. Name Switching Service (nss), what uses it and how it plays a role;
2. PAM defined: services, modules, stacks, authentication versus authentication versus authentication;
3. PAM tags: required -- requisite -- binding -- server_policy -- try_first_pass -- use_first_pass;
4. Why authenticate using pam_unix and pam_ldap (very simply) -- password management;
5. Virtual walkthrough of a PAM "stack"
I plan not to talk to the slides, and I plan to have detailed takeways and not just a slide show.
All in all, 30 minutes for each and an hour for the session for the two days. Are you excited yet?
And I had better follow this up with some blogspam for the next few days
( Feb 15 2005, 02:26:26 PM CST ) Permalink Comments [1]
Posted by brian suk on May 17, 2005 at 01:52 PM CDT #