Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

LDAP information

Posted on 2011-03-14
6
Medium Priority
?
946 Views
Last Modified: 2013-12-24
I need to find some LDAP information specifically ldap-login-dn, ldap-base-dn, ldap-naming-attribute, etc.  I wanted to know how I go about finding this information?  
0
Comment
Question by:HenryCastro
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
6 Comments
 
LVL 57

Assisted Solution

by:Mike Kline
Mike Kline earned 400 total points
ID: 35132435
Is this for AD or another LDAP directory?  If for AD you can look at the link below that will show you the names behind the GUI

http://www.selfadsi.org/user-attributes-w2k3.htm

Thanks

Mike
0
 

Author Comment

by:HenryCastro
ID: 35134262
Its for AD, windows 2003 domain. I will look at the link now, thank you.
0
 
LVL 6

Assisted Solution

by:jwilleke
jwilleke earned 1600 total points
ID: 35136794
If you just want to see the LDAP "stuff" then you can use http://directory.apache.org/studio/ LDAP Browser.

You may need to find suitable login credentials to use with AD and often this is the hard part: http://ldapwiki.willeke.com/wiki/LDAP%20and%20Active%20Directory

-jim
0
Fill in the form and get your FREE NFR key NOW!

Veeam® is happy to provide a FREE NFR server license to certified engineers, trainers, and bloggers.  It allows for the non‑production use of Veeam Agent for Microsoft Windows. This license is valid for five workstations and two servers.

 

Author Comment

by:HenryCastro
ID: 35138666
To be even more specific my ISP is making a VPN connection with their ASA.  They are asking for:


ldap-login-dn
Specifies the name of the directory object that the system should bind as.

ldap-login-password
Specifies the password for the login DN.

ldap-base-dn
To specify the location in the LDAP hierarchy where the server should begin searching when it receives
an authorization request

ldap-naming-attribute
Specifies the Relative Distinguished Name attribute (or attributes) that
uniquely identifies an entry on the LDAP server.

Server-port
                Port number for communicating with the LDAP server

I appreciate all the input and advice.  Thanks for the responses.
0
 
LVL 6

Accepted Solution

by:
jwilleke earned 1600 total points
ID: 35138813
ldap-login-dn
Specifies the name of the directory object that the system should bind as.
-> This will need to be the fully distinguished name of the user that they will use to find users.
The account will need to have rights to see what the applicaiton needs to return. This should probably be a read-only account and NOT ADMINISTRATOR.


ldap-login-password
Specifies the password for the login DN.
-> password for above

ldap-base-dn
To specify the location in the LDAP hierarchy where the server should begin searching when it receives
an authorization request
-> This is the distinguished name of the container where your users are, something like: CN=Users,DC=yourdomain,DC=com


ldap-naming-attribute
Specifies the Relative Distinguished Name attribute (or attributes) that
uniquely identifies an entry on the LDAP server.
-> if AD, this is probably CN

Server-port
                Port number for communicating with the LDAP server
->Should be 636 and LDAPS (or 389 and TLS) as otherwise, the password would be in clear text on the wire.

-jim
0
 

Author Closing Comment

by:HenryCastro
ID: 35139749
thank you for all the help.
0

Featured Post

Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This process allows computer passwords to be managed and secured without using LAPS. This is an improvement on an existing process, enhanced to store password encrypted, instead of clear-text files within SQL
Wouldn't it be nice if objects in Active Directory automatically moved into the correct Organizational Units? This is what AutoAD aims to do and as a plus, it automatically creates Sites, Subnets, and Organizational Units.
Polish reports in Access so they look terrific. Take yourself to another level. Equations, Back Color, Alternate Back Color. Write easy VBA Code. Tighten space to use less pages. Launch report from a menu, considering criteria only when it is filled…
This lesson discusses how to use a Mainform + Subforms in Microsoft Access to find and enter data for payments on orders. The sample data comes from a custom shop that builds and sells movable storage structures that are delivered to your property. …
Suggested Courses

636 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question