1
00:00:06,630 --> 00:00:07,463
- In this video,

2
00:00:07,463 --> 00:00:10,140
I'm going to explain about LDAP.

3
00:00:10,140 --> 00:00:12,240
The Lightweight Directory Access Protocol

4
00:00:12,240 --> 00:00:13,073
or LDAP

5
00:00:13,073 --> 00:00:14,160
is a generic solution

6
00:00:14,160 --> 00:00:17,253
to store important information centrally.

7
00:00:18,120 --> 00:00:20,820
And LDAP is often used for authentication,

8
00:00:20,820 --> 00:00:22,920
but other types of
information can be stored

9
00:00:22,920 --> 00:00:24,480
in LDAP as well.

10
00:00:24,480 --> 00:00:27,370
In fact, LDAP has an origin

11
00:00:27,370 --> 00:00:29,070
as a phone dictionary

12
00:00:29,070 --> 00:00:31,470
so you can sort anything in LDAP.

13
00:00:31,470 --> 00:00:32,700
Even if it's convenient

14
00:00:32,700 --> 00:00:35,010
to contact LDAP server on port 389,

15
00:00:35,010 --> 00:00:35,843
it's not secure

16
00:00:35,843 --> 00:00:38,010
because passwords are
not encrypted at all.

17
00:00:38,010 --> 00:00:40,020
So if you really want to create it,

18
00:00:40,020 --> 00:00:41,733
better configure for security.

19
00:00:42,990 --> 00:00:44,730
To make it real secure,

20
00:00:44,730 --> 00:00:46,890
Kerberos tickets are commonly used.

21
00:00:46,890 --> 00:00:49,170
And that's because Kerberos tickets

22
00:00:49,170 --> 00:00:50,640
are a safer way to deal

23
00:00:50,640 --> 00:00:54,090
with sensitive values like passwords.

24
00:00:54,090 --> 00:00:56,880
And to enhance LDAP with
Kerberos functionality,

25
00:00:56,880 --> 00:00:59,550
Free IPA is a common solution.

26
00:00:59,550 --> 00:01:02,283
In the next video, you'll
learn how to set up FreeIPA.