Project Definition

Name

LDAP Live Update Process

Project Description

Convert the nightly batch LDAP directory update process from one that dumps the existing database and creates a new one, to one that performs updates against the running database.

Statement of the Problem to be Solved

There are new attributes associated with entries in OpenLDAP 2.1 which will change every day when the database is recreated. With the addition of updating an Active Directory via LDAP on a daily basis, the destroy and rebuild technique will no longer work (because it would change the SID's on a daily basis which would just totally wreck the AD permissions).

Sponsor

Computing and Information Technology (CIT)

Costs (one-time)

All costs are indirect only (time).

Costs (on-going)

All on-going costs are indirect (software maintenance).

Benefits

Updating the LDAP directory with a live feed allows for the capability of keeping the Active Directory deployment in sync by several means and provides the ground work for providing real-time updates to both LDAP and Active Directory.

Dependencies

This project really depends on the OpenLDAP 2.1 upgrade.

If there are problems implementing the current batch update process in OpenLDAP 2.1, this project may become the salvation of the former.

Last modified May 21 2003 11:24 AM