Difference between revisions of "LPIC-301(ES)"

Revision as of 00:55, 6 July 2011

Introducción

La capacidad de planificación es el arte y la ciencia de no quedarse sin recursos en el futuro previsible. A menudo se hace de manera informal, mediante la medición de los recursos que un programa necesita, normalmente después de haberse quedado sin algo.

Si usted hace una tabla de la cantidad de CPU, memoria y E / S de ancho de banda que un programa necesita para hacer alguna unidad de trabajo, se puede estimar cuánto va a necesitar en alguna carga mayor en el futuro. Alternativamente, puede utilizar las mediciones para determinar una máquina nueva para el programa, o para estimar cuán grande tendrá que ser la máquina necesaria para consolidar sus programas y otros.

Estimaciones informales de hojas de cálculo son a menudo suficientes para calculos y la planificación futura, pero no tienen ninguna garantía de exactitud y no dicen:

• En que carga el programa se sobrecarga, ni

Para ello, utilice uno de los programas que resolver el problema. Hay productos comerciales para hacerlo en Linux, pero por lo menos exite un un solver de colas de red (queuing network solver), Perl:: PDQ por Neil Gunther. Estos generarn modelos matemáticos adecuados, así que usted puede predecir el desempeño del programa bajo carga, y calcular la caída en el rendimiento mientras el programa se sobrecarga.

Información de la Versión

Estos son los objetivos versión 1.0.1.

Apéndice

Apéndice ( 1ro de Abril de 2010)

• C++ es C en desarollo

Traducción de Objetivos

Las siguientes traducciones de los objetivos se encuentran disponibles en esta wiki:

• English
• Spanish

Objectives

Topic 301: Conceptos, Arquitectura y Diseño

301.1 LDAP Concepts and Architecture

Areas de Conocimiento Clave:

• LDAP and X.500 technical specification
• Attribute definitions
• Directory namespaces
• Distinguished names
• LDAP Data Interchange Format
• Meta-directories
• Changetype operations

The following is a partial list of the used files, terms and utilities:

• LDIF
• Meta-directory
• changetype
• X.500
• /var/lib/ldap/*

301.2 Directory Design

Areas de Conocimiento Clave:

• Define LDAP directory content
• Organize directory
• Planning appropriate Directory Information Trees

The following is a partial list of the used files, terms and utilities:

• Class of Service
• Directory Information Tree
• Distinguished name
• Container

301.3 Schemas

Areas de Conocimiento Clave:

• LDAP schema concepts
• Create and modify schemas
• Attribute and object class syntax

The following is a partial list of the used files, terms and utilities:

• Distributes schema
• Extended schema
• Object Identifiers
• /etc/ldap/schema/*
• Object class
• Attribute
• include directive

Topic 302: Installation and Development

302.1 Compiling and Installing OpenLDAP

Areas de Conocimiento Clave:

• Compile and configure OpenLDAP from source
• Knowledge of OpenLDAP backend databases
• Manage OpenLDAP daemons
• Troubleshoot errors during installation

The following is a partial list of the used files, terms and utilities:

• make
• gpg
• rpm
• dpkg
• bdb
• slapd
• slurpd

302.2 Developing for LDAP with Perl and C

Areas de Conocimiento Clave:

• Syntax of Perl's Net::LDAP module
• Write Perl scripts to bind, search, and modify directories

The following is a partial list of the used files, terms and utilities:

• Net::LDAP
• using Perl with Net::LDAP
• using C with libldap

Topic 303: Configuration

303.1 placeholder

Areas de Conocimiento Clave:

• N/A

The following is a partial list of the used files, terms and utilities:

• N/A

303.2 Access Control Lists in LDAP

Areas de Conocimiento Clave:

• Plan LDAP access control lists
• Grant and revoke LDAP access permissions
• Access control syntax

The following is a partial list of the used files, terms and utilities:

• ACL
• slapd.conf
• anonymous
• users
• self
• none
• auth
• compare
• search
• read
• write

303.3 LDAP Replication

Areas de Conocimiento Clave

• Replication concepts
• Configure OpenLDAP replication
• Execute and manage slurpd
• Analyze replication log files
• Understand replica hubs
• LDAP referrals
• LDAP sync replication

The following is a partial list of the used files, terms and utilities:

• slurpd
• slapd.conf
• master / slave server
• consumer
• replica hub
• one-shot mode
• referral
• syncrepl
• pull-based / push-based synchronization
• refreshOnly and refreshAndPersist
• replog

303.4 Securing the Directory

Areas de Conocimiento Clave:

• Securing the directory with SSL and TLS
• Firewall considerations
• Unauthenticated access methods
• User / password authentication methods
• Maintanence of SASL user DB
• Client / server certificates

The following is a partial list of the used files, terms and utilities:

• SSL / TLS
• Security Strength Factors (SSF)
• SASL
• proxy authorization
• StartTLS
• slapd.conf
• iptables

303.5 LDAP Server Performance Tuning

Areas de Conocimiento Clave

• Measure LDAP performance
• Tune software configuration to increase performance
• Understand indexes

The following is a partial list of the used files, terms and utilities:

• index
• slapd.conf
• DB_CONFIG

303.6 OpenLDAP Daemon Configuration

Areas de Conocimiento Clave

• slapd.conf configuration directives
• slapd.conf database definitions
• slapd and its command line options
• Analyze slapd log files

The following is a partial list of the used files, terms and utilities:

• slapd.conf
• slapd
• /var/lib/ldap/*
• loglevel

Topic 304: Usage

304.1 Searching the Directory

Areas de Conocimiento Clave:

• Use OpenLDAP search tools with basic options
• Use OpenLDAP search tools with advanced options
• Optimize LDAP search queries
• Knowledge of search filters and their syntax

The following is a partial list of the used files, terms and utilities:

• ldapsearch
• index
• search filter syntax
• slapd.conf

304.2 LDAP Command Line Tools

Areas de Conocimiento Clave:

• Use the ldap* tools to access and modify the directory
• Use the slap* tools to access and modify the directory

The following is a partial list of the used files, terms and utilities:

• ldap.conf
• ldapsearch
• ldapadd
• ldapmodify
• ldapdelete
• ldapmodrdn
• slapindex
• slapadd
• slapcat

304.3 Whitepages

Areas de Conocimiento Clave

• Plan whitepages services
• Configure whitepages services
• Configure clients to retrieve data from whitepages services

The following is a partial list of the used files, terms and utilities:

• whitepages
• Outlook

Topic 305: Integration and Migration

305.1 LDAP Integration with PAM and NSS

Areas de Conocimiento Clave

• Configure PAM to use LDAP for authentication
• Configure NSS to retrieve information from LDAP
• Configure PAM modules in various Unix environments

The following is a partial list of the used files, terms and utilities:

• PAM
• NSS
• /etc/pam.d/*
• /etc/nsswitch.conf

305.2 NIS to LDAP Migration

Areas de Conocimiento Clave

• Analyze NIS structure prior to migration to LDAP
• Analyze NIS structure prior to integration with LDAP
• Automate NIS to LDAP migration
• Create a NIS to LDAP gateway

The following is a partial list of the used files, terms and utilities:

• NIS
• NIS to LDAP gateway
• slapd.conf
• /etc/yp/*

305.3 Integrating LDAP with Unix Services

Areas de Conocimiento Clave

• Integrate SSH with LDAP
• Integrate FTP with LDAP
• Integrate HTTP with LDAP
• Integrate FreeRADIUS with LDAP
• Integrate print services with LDAP

The following is a partial list of the used files, terms and utilities:

• sshd.conf
• ftp
• httpd.conf
• radiusd.conf
• cupsd.conf
• ldap.conf

305.4 Integrating LDAP with Samba

Areas de Conocimiento Clave:

• Migrate from smbpasswd to LDAP
• Understand OpenLDAP Samba schema
• Understand LDAP as a Samba password backend

The following is a partial list of the used files, terms and utilities:

• smb.conf
• smbpasswd
• samba3.schema
• slapd.conf

305.5 Integrating LDAP with Active Directory

Areas de Conocimiento Clave:

• Kerberos integration with LDAP
• Cross platform authentication
• Single sign-on concepts
• Integration and compatibility limitations between OpenLDAP and Active Directory

The following is a partial list of the used files, terms and utilities:

• Kerberos
• Active Directory
• single sign-on
• DNS

305.6 Integrating LDAP with Email Services

Areas de Conocimiento Clave:

• Plan LDAP schema structure for email services
• Create email attributes in LDAP
• Integrate Postfix with LDAP
• Integrate Sendmail with LDAP

The following is a partial list of the used files, terms and utilities:

• Postfix
• Sendmail
• schema
• SASL
• POP
• IMAP

Topic 306: Capacity Planning

306.1 Measure Resource Usage

Areas de Conocimiento Clave

• Measure CPU usage
• Measure memory usage
• Measure disk I/O
• Measure network I/O
• Measure firewalling and routing throughput
• Map client bandwidth usage

The following is a partial list of the used files, terms and utilities:

• iostat
• vmstat
• pstree
• w
• lsof
• top
• uptime
• sar

306.2 Troubleshoot Resource Problems

Areas de Conocimiento Clave:

• Match / correlate system symptoms with likely problems
• Identify bottlenecks in a system

The following is a partial list of the used files, terms and utilities:

• swap
• processes blocked on I/O
• blocks in
• blocks out

306.3 Analyze Demand

Areas de Conocimiento Clave:

• Identify capacity demands
• Detail capacity needs of programs
• Determine CPU / memory needs of programs
• Assemble program needs into a complete analysis

The following is a partial list of the used files, terms and utilities:

• PDQ
• CPU usage
• memory usage
• appropriate measurement time
• trend
• model
• what-if
• validate
• performance equation

306.4 Predict Future Resource Needs

Areas de Conocimiento Clave

• Predict capacity break point of a configuration
• Observe growth rate of capacity usage
• Graph the trend of capacity usage

The following is a partial list of the used files, terms and utilities:

• diagnose
• predict growth
• average
• resource exhaustion