Before you start
Learn what these tutorials can teach you and how you can get the most from them.
The Linux Professional Institute (LPI) certifies Linux® system administrators at three levels: junior level (also called "certification level 1"), advanced level (also called "certification level 2"), and senior level (also called "certification level 3"). To attain certification level 1, you must pass exams 101 and 102. To attain certification level 2, you must pass exams 201 and 202. To attain certification level 3, you must have an active advanced-level certification and pass exam 301 ("core"). You may also need to pass additional specialty exams at the senior level.
developerWorks offers tutorials to help you prepare for the five junior, advanced, and senior certification exams. Each exam covers several topics, and each topic has a corresponding self-study tutorial on developerWorks. Table 1 lists the six topics and corresponding developerWorks tutorials for LPI exam 301.
Table 1. LPI exam 301: Tutorials and topics
|LPI exam 301 topic||developerWorks tutorial||Tutorial summary|
|Topic 301||LPI exam 301 prep:|
Concepts, architecture, and design
|Learn about LDAP concepts and architecture, how to design and implement an LDAP directory, and about schemas.|
|Topic 302||LPI exam 301 prep:|
Installation and development
|Learn how to install, configure, and use the OpenLDAP software.|
|Topic 303|| LPI exam 301 prep:|
|(This tutorial) Lean how to configure the OpenLDAP software in detail. See the detailed objectives.|
|Topic 304|| LPI exam 301 prep:|
|Topic 305|| LPI exam 301 prep:|
Integration and migration
|Topic 306|| LPI exam 301 prep:|
To pass exam 301 (and attain certification level 3), the following should be true:
- You should have several years of experience with installing and maintaining Linux on a number of computers for various purposes.
- You should have integration experience with diverse technologies and operating systems.
- You should have professional experience as, or training to be, an enterprise-level Linux professional (including having experience as a part of another role).
- You should know advanced and enterprise levels of Linux administration including installation, management, security, troubleshooting, and maintenance.
- You should be able to use open source tools to measure capacity planning and troubleshoot resource problems.
- You should have professional experience using LDAP to integrate with UNIX® services and Microsoft® Windows® services, including Samba, Pluggable Authentication Modules (PAM), e-mail, and Active Directory.
- You should be able to plan, architect, design, build, and implement a full environment using Samba and LDAP, as well as measure the capacity planning and security of the services.
- You should be able create scripts in Bash or Perl or have knowledge of at least one system programming language (such as C).
The Linux Professional Institute doesn't endorse any third-party exam preparation material or techniques in particular.
Welcome to "Configuration," the third of six tutorials designed to prepare you for LPI exam 301. In this tutorial, you learn about LDAP server configuration, including access controls, security, replication, and database performance.
This tutorial is organized according to the LPI objectives for this topic. Very roughly, expect more questions on the exam for objectives with higher weights, as shown in Table 2.
Table 2 lists the detailed objectives for this tutorial.
Table 2. Configuration: Exam objectives covered in this tutorial
|LPI exam objective||Objective weight||Objective summary|
Access control lists in OpenLDAP
|2||Plan and implement access control lists.|
|5||Set up OpenLDAP to replicate data between multiple servers.|
Securing the directory
|4||Configure encrypted access to the LDAP server, and restrict access at the firewall level.|
LDAP server performance tuning
|2||Measure the performance of your LDAP server, and tune for maximum performance.|
OpenLDAP daemon configuration
|2||Understand the basic slapd.conf configuration directives, and become
familiar with the basic |
To get the most from this tutorial, you should have advanced knowledge of Linux and a working Linux system on which to practice the commands covered.
If your fundamental Linux skills are a bit rusty, you may want to first review the tutorials for the LPIC-1 and LPIC-2 exams.
Different versions of a program may format output differently, so your results may not look exactly like the listings and figures in this tutorial.
To follow along with the examples in these tutorials, you need a Linux workstation with the OpenLDAP package and support for PAM. Most modern distributions meet these requirements.