What’s new in OpenLDAP

Howard Chu

OpenLDAP Project and Symas

Abstract

The OpenLDAP Project continues to innovate in directory standards and technologies, with work ongoing on spec revisions and protocol enhancements. This talk will present an overview of new features in the upcoming OpenLDAP 2.5 release such as LDAP Transaction support, improved concurrency, security/authentication enhancements, and various other recent developments. Support for LDAP Transactions is present in the back-bdb, hdb, and mdb backends. A new extension supporting 2-phase commit is also being developed for LMDB/back-mdb (BDB already supports 2PC) to allow transactions to be distributed across multi-DSA DITS. Support for SASL Channel Bindings has been added for TLS and SASL/EXTERNAL authentication. The thread pool used by slapd has been extended to support multiple queues per pool, to reduce lock contention on multiprocessor systems. Work has also been done on improving logging performance, as syslog remains a significant performance bottleneck on most systems.

Presentation

What’s new in OpenLDAP – slides

Howard Chu

Howard Chu