LDAP is a protocol that is used for querying and modifying an X.500 directory service over TCP/IP. OpenLDAP is an open-source implementation of LDAP. Applications of LDAP include address books, email address lists, mail server configurations, and central authentication servers. CimTrak for LDAP/OpenLDAP monitors the directory’s contents and schema for changes, additions, and deletions.
When CimTrak locks an LDAP installation for monitoring, it reads the entire contents of the directory database. It calculates a digital signature for each member, configuration, or schema entity and stores it in CimTrak’s master repository along with a copy of the entity itself.
At user-configured intervals, CimTrak reads the contents of the directory database, calculates the digital signature of each entity, and compares it to the signature stored in CimTrak’s master repository.
When CimTrak detects a changed (or an added or deleted) entity, the entity and its digital signature