One of the most important aspects of directory administration is determining the security policies. The security policy describes who is allowed to view and manipulate directory information.
Data within the directory will have varying levels of sensitivity. It is important that the more sensitive information be protected from unauthorized users. It is equally essential that administration not be limited to a single person unless absolutely necessary.
To facilitate installation and use, these issues should be addressed and resolved before introduction of a production system.
For LDAP projects, it is imperative that the security policy is understood and used by all applications. As an example, for objects and attributes that ...