Slapd (OpenLDAP)

The Slapd (OpenLDAP) server on Linux is a key service for managing LDAP directories, allowing you to centralize and secure authentication and authorization information within your infrastructure.

Standard LDAP Server with Multi-Domain Support

You can use Slapd as a fully compliant LDAP server that responds to LDAP client requests regardless of their library. By default, it listens on port 389 and can serve multiple directory trees with different suffixes. This flexibility lets you organize your data across several domains or distinct needs while running a single server instance.

Dynamic and Centralized Configuration

Slapd uses a standardized LDAP-based configuration system stored in LDIF format, enabling you to modify settings on the fly, without restarting the server. You define the server identity by specifying listening ports and the directories served while applying precise access control rules (ACLs). This ensures rigorous control over who can access or modify your directory information.

Security and Replication Capabilities

Slapd supports securing communications using SSL/TLS, protecting the confidentiality and integrity of data exchanged between clients and the server. It also supports replication to maintain synchronized copies of directory data across multiple servers. This single-master/multiple-slave replication setup is essential for high availability and fault tolerance. Associated daemons like slurpd can be configured to monitor and propagate changes reliably to replicas.

These three core aspects—multi-domain directory service, flexible live configuration, and secure replication—make Slapd (OpenLDAP) under Linux a robust and versatile solution adapted to professional IT environments where availability, security, and centralized management are critical.