Benefits of Using CimTrak for LDAP/OpenLDAP
CimTrak detects any change to the attributes of any member entity or configuration. When changes are detected, CimTrak for LDAP/OpenLDAP can be used to compare the entity’s attributes to the entity’s previous
CimTrak for LDAP/OpenLDAP Can:
- Detect when an entity has been added to or deleted from the domain, log the activity, and notify the responsible parties by e-mail,
Syslog or SNMP. - Detect, log, and notify when its configuration
has been modified, added, or deleted. - Detect, log, and notify when any content has been modified, added to, or deleted from the directory’s database.
- Detect, log, and notify when any of the directory’s schema entities have been modified, added, or deleted.
LDAP is a protocol that is used for querying and modifying an X.500 directory service over TCP/IP. OpenLDAP is an open-source implementation of LDAP. Applications of LDAP include address books, email address lists, mail server configurations, and central authentication servers. CimTrak for LDAP/OpenLDAP monitors the directory’s contents and schema for changes, additions, and deletions.
How CimTrak for LDAP/OpenLDAP Works
When CimTrak locks an LDAP installation for monitoring, it reads the entire contents of the directory database. It calculates a digital signature for each member, configuration, or schema entity and stores it in CimTrak’s master repository along with a copy of the entity itself.
At user-configured intervals, CimTrak reads the contents of the directory database, calculates the digital signature of each entity, and compares it to the signature stored in CimTrak’s master repository.
When CimTrak detects a changed (or an added or deleted) entity, the entity and its digital signature
