?
Solved

LDAP information

Posted on 2011-03-14
6
Medium Priority
?
942 Views
Last Modified: 2013-12-24
I need to find some LDAP information specifically ldap-login-dn, ldap-base-dn, ldap-naming-attribute, etc.  I wanted to know how I go about finding this information?  
0
Comment
Question by:HenryCastro
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
6 Comments
 
LVL 57

Assisted Solution

by:Mike Kline
Mike Kline earned 400 total points
ID: 35132435
Is this for AD or another LDAP directory?  If for AD you can look at the link below that will show you the names behind the GUI

http://www.selfadsi.org/user-attributes-w2k3.htm

Thanks

Mike
0
 

Author Comment

by:HenryCastro
ID: 35134262
Its for AD, windows 2003 domain. I will look at the link now, thank you.
0
 
LVL 6

Assisted Solution

by:jwilleke
jwilleke earned 1600 total points
ID: 35136794
If you just want to see the LDAP "stuff" then you can use http://directory.apache.org/studio/ LDAP Browser.

You may need to find suitable login credentials to use with AD and often this is the hard part: http://ldapwiki.willeke.com/wiki/LDAP%20and%20Active%20Directory

-jim
0
Get 15 Days FREE Full-Featured Trial

Benefit from a mission critical IT monitoring with Monitis Premium or get it FREE for your entry level monitoring needs.
-Over 200,000 users
-More than 300,000 websites monitored
-Used in 197 countries
-Recommended by 98% of users

 

Author Comment

by:HenryCastro
ID: 35138666
To be even more specific my ISP is making a VPN connection with their ASA.  They are asking for:


ldap-login-dn
Specifies the name of the directory object that the system should bind as.

ldap-login-password
Specifies the password for the login DN.

ldap-base-dn
To specify the location in the LDAP hierarchy where the server should begin searching when it receives
an authorization request

ldap-naming-attribute
Specifies the Relative Distinguished Name attribute (or attributes) that
uniquely identifies an entry on the LDAP server.

Server-port
                Port number for communicating with the LDAP server

I appreciate all the input and advice.  Thanks for the responses.
0
 
LVL 6

Accepted Solution

by:
jwilleke earned 1600 total points
ID: 35138813
ldap-login-dn
Specifies the name of the directory object that the system should bind as.
-> This will need to be the fully distinguished name of the user that they will use to find users.
The account will need to have rights to see what the applicaiton needs to return. This should probably be a read-only account and NOT ADMINISTRATOR.


ldap-login-password
Specifies the password for the login DN.
-> password for above

ldap-base-dn
To specify the location in the LDAP hierarchy where the server should begin searching when it receives
an authorization request
-> This is the distinguished name of the container where your users are, something like: CN=Users,DC=yourdomain,DC=com


ldap-naming-attribute
Specifies the Relative Distinguished Name attribute (or attributes) that
uniquely identifies an entry on the LDAP server.
-> if AD, this is probably CN

Server-port
                Port number for communicating with the LDAP server
->Should be 636 and LDAPS (or 389 and TLS) as otherwise, the password would be in clear text on the wire.

-jim
0
 

Author Closing Comment

by:HenryCastro
ID: 35139749
thank you for all the help.
0

Featured Post

Get free NFR key for Veeam Availability Suite 9.5

Veeam is happy to provide a free NFR license (1 year, 2 sockets) to all certified IT Pros. The license allows for the non-production use of Veeam Availability Suite v9.5 in your home lab, without any feature limitations. It works for both VMware and Hyper-V environments

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This process allows computer passwords to be managed and secured without using LAPS. This is an improvement on an existing process, enhanced to store password encrypted, instead of clear-text files within SQL
In today's business world, data is more important than ever for informing marketing campaigns. Accessing and using data, however, may not come naturally to some creative marketing professionals. Here are four tips for adapting to wield data for insi…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
This video shows how to use Hyena, from SystemTools Software, to update 100 user accounts from an external text file. View in 1080p for best video quality.
Suggested Courses

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question