Page History

2Keys has not encountered any real world examples of Cassandra as a directory. 2Keys has also not encountered any companies successfully converting a non-directory based database into a LDAP directory.

In regards to opinions, specifically with OpenAM and Cassandra it is technically feasible to write a custom authentication module. Customization would also be required for OpenAM as we believe it only has consideration for directories and traditional relational databases.

First if taking this route, it is recommended to keep the authentication data from the customer data logically and if possible physically.

A true LDAP directory has the following core features that make it compelling and still used today for authentication,

1. Fast Queries
2. Replication
3. Partition-able
4. LDAP Protocal

2Keys recommends that Globe ensure that Casssandra can match the first 3 requirements. Also, if possible consider adding LDAP functionality to Cassandra to increase compatibility as many systems use LDAP for authentication.

As a side-note, even most SQL databases do not meet this criteria and changing the backend database is not officially supported. An OpenDJ engineer provides his reasoning here.