Link to home
Start Free TrialLog in
Avatar of bmsande
bmsande

asked on

Need local LDAP instance for testing on Windows server

Windows Server 2008 R2
Joined to domain and contained in DMZ.  Server is unable to communicate with domain, intentionally.

I have a developer who is writing a .NET app and needs to test LDAP user queries, locally from the server.  I'm researching how to setup a local LDAP instance on this server.  I thought the Active Directory Lightweight Directory Services role might do the trick, but I'm unable to connect to the instance I installed with ADSI Edit.  I'm either doing something wrong or misinterpreting this role.

I'm researching alternative LDAP solutions and my research led me to ApacheDS:  http://directory.apache.org/apacheds/

Would ApacheDS be a good solution to allow us to build a container of users, for test queries?  Or is there a Windows feature I can take advantage of?  Any other ideas?

Thanks in advance.
Avatar of Radhakrishnan
Radhakrishnan
Flag of India image

Hi,

If i understand correct, you are trying query users via ldap? if so, you don't need to enable the Active Directory Lightweight Directory Services role. Bydefault, LDAP is enabled once you installed the DC. Go to start>>run>>ldp.exe>>Connection>>Connect>>Give the server name and port 389>>OK>>Once it's connected you can see lot of LDAP information which can be used for your testing.
Use ADAM (Active Directory Application Mode).
It runs as a user service and can be provisioned on the developer's PC.

http://www.microsoft.com/en-us/download/details.aspx?id=4201
ASKER CERTIFIED SOLUTION
Avatar of BigRat
BigRat
Flag of France image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of bmsande
bmsande

ASKER

@Radhakrishnan - thanks for your suggestion but the server is contained in the DMZ so we can't connect to the DC

@BigRat - I came across OpenLDAP in my research but found ApacheDS possibly be more user-friendly.  I haven't tested either, yet.  But it sounds like you understand our objective.  I'll take a look at OpenLDAP.  Thanks.
Avatar of bmsande

ASKER

Does anyone else think ADAM would be a good solution??  I've been reading about this but not sure how it compares to OpenLDAP or ApacheDS.
The good thing about ADAM is that it uses the same schema as AD, so all platform quirks can be addressed easily. Other than that, if you like OpenLDAP then go for it.