Comments for The Thought Blender

Comment on Comparison of LDAP / Directory Servers – Update by Max-

Max- — Mon, 14 Nov 2011 13:10:34 +0000

Few months ago I had some experience with OpenDS, OpenLDAP and ApacheDS.
I was in charge of choosing the right LDAP server for our CA.
Here are my results.

ApacheDS.
=========

I liked it very much at first, but soon I’ve encountered some limitation: it couldn’t handle the CRL attributes the right way. I tried to talk on the mailing list and they told me that there was some problem with the binary attributes.
That made me decide ApacheDS was a very good product with very good supported but it is still not mature enough for production.

OpenDS
=======

We started our production environment with OpenDS since it was much easier than OpenLDAP to configure. For the first months everything went good… Than we started having weird behaviour: the replication stopped working, the replicas didn’t get updates, the ldif files got corrupted… We had to change LDAP server.

OpenLDAP
=========

We migrated our CA to OpenLDAP and I have to admit it wasn’t really so hard to configure…
Now it works like a charm and I found it to be MUCH FASTER than OpenDS.
Never had any problem with the replication (Hope these won’t be the famous last words!!!).

Comment on Comparison of LDAP / Directory Servers – Update by J-C

J-C — Fri, 24 Jun 2011 16:09:12 +0000

It’s been almost 2 and half years since your last post regarding LDAP servers…. I was wondering if anyone has recent experience with all the various distributions available. Is Oracle backing up openDS? Is the 1.5 release of apacheDS provides good performance tweaks (like you mentioned in your initial post)?

We are looking at something easy to manage for a small number of users. For the moment we are comparing the pure Java implementations. Any pointer to guide us would be greatly appreciated.

Thanks

Comment on Comparison of Directory / LDAP Servers by Hans

Hans — Wed, 04 Nov 2009 00:49:14 +0000

I came across the site since i am trying to collect information about alternatives to OpenLDAP. It is now the second time that i had a bad experience with the latter one. Basically your test sounds all right to me since it shows: OpenLDAP is poorely configured by default. It actually takes a lot of time to get what you want. Reading documentation, following up on problems in case of an error are common tasks then. The points are: getting a secured connection, populating a scheme, or configure the authentication. Btw, i made my experience at Debian/Lenny using the default packages.

Comment on Comparison of Directory / LDAP Servers by Jason

Jason — Tue, 25 Aug 2009 13:57:56 +0000

Thanks for the review. It has at least given me something to think about wrt new infrastructure.

Comment on Welcome by Mark Johnstone

Mark Johnstone — Mon, 20 Jul 2009 07:52:34 +0000

Hope you are well.

I am planning on producing a conference on Cloud computing and wondered if you would be interested in helping with this.

I have put together a draft agenda and wondered if you would like to help me develop this – provide your criticism of it and develop it into the position you thing it should be in.

In return i would be happy to provide links to your blog from the company website and event website.

I am also producing an online magazine on web 2.0 and would be happy to include an article or advert with links in here if you like.

Hope this is of interest.

Best regards,

Mark

Comment on Choosing a Portal Platform by Choosing a Portal Platform | PHP-Blog.com

Choosing a Portal Platform | PHP-Blog.com — Thu, 01 Jan 2009 01:02:25 +0000

[...] the original here: Choosing a Portal Platform Related ArticlesBookmarksTags Facebook Platform API PHP is the language of choice for most [...]

Comment on Comparison of Directory / LDAP Servers by Comparison of LDAP / Directory Servers - Update « The Thought Blender

Comparison of LDAP / Directory Servers - Update « The Thought Blender — Tue, 30 Dec 2008 15:35:23 +0000

[...] of LDAP / Directory Servers - Update Almost two months ago I wrote a post about some directory servers I was testing, mostly I wrote about some early testing that I had done [...]

Comment on Comparison of Directory / LDAP Servers by csconnell

csconnell — Thu, 06 Nov 2008 13:56:24 +0000

Thanks for your comments Gavin! – I’ll check out your links

Comment on Comparison of Directory / LDAP Servers by csconnell

csconnell — Thu, 06 Nov 2008 13:52:41 +0000

Correct, OpenDS doesn’t come bundled, but there isn’t any different between installing a package in Linux (such as OpenLDAP) and setting up the tree and then running setup with OpenDS and setting up the tree . Making sure you have all the packages, configuring everything, and then making it is a different experience (it is easy enough to do, but the comparison was with pre-packaged software).

I have been very clear that past setting up the tree, I have not done much to configure either OpenLDAP or OpenDS and that the test are based on an “out-of-the-box” install. I have no doubt that they would both perform better if I spent time tuning them, which I will. This is just the first set of testing.

One thing won’t change with testing though, and that is the ease of use of OpenDS vs OpenLDAP – you guys (OpenLDAP) I believe are more focused on high performance and use by folks who tend to use CLI tools and who have deep experience with LDAP, while I think OpenDS (and ApacheDS too) apply some of their focus on a different kind of user experience that can extend LDAP into the hands of new folks. Honestly, my opinion is that those tools do have a better user experience and are less intimidating to folks than OpenLDAP.

I do appreciate your comments and your offer to work with me on this and will contact you via e-mail.

Comment on Comparison of Directory / LDAP Servers by Gavin Henry

Gavin Henry — Thu, 06 Nov 2008 10:49:00 +0000

If you want to download a prepacked version of OpenLDAP, not an OS bundled one, like you did for OpenDS, try:

http://blog.zrmt.com/2007/10/18/rhel5-openldap/

or http://www.symas.net/portal/index.fcgi