Questions tagged [ldap]
LDAP is Lightweight Directory Access Protocol.
308
questions
36
votes
4
answers
133k
views
The best LDAP browser in Linux? [closed]
I'm using phpLDAPadmin currently, but I'm wondering if there is any native utility do the similar thing?
- 18.4k
29
votes
2
answers
51k
views
What does binding to a LDAP server mean?
I have googled for well over an hour, and cannot find and information that simply explains the protocol/concept. Re-binding seems to occur several times during the process of LDAP authentication and ...
- 652
17
votes
3
answers
54k
views
Is there a sample AD & LDAP server for practice? [closed]
I am trying to study the connection method to LDAP and AD, but don't have a working AD.
I do have a full working Window 2008 Server.
Is there a sample AD & LDAP server I could use for practice?
- 305
14
votes
1
answer
8k
views
Access Office 365-directory using LDAP
My company runs internal e-mail-traffic using Outlook 365. I prefer using a proper e-mail client (in my case: thunderbird) via IMAP and SMTP, which is no problem since the server adresses are provided ...
- 241
13
votes
2
answers
3k
views
Mount Mac OSX server NFS from Linux <krb5> LDAP?
I'm trying to mount an NFS share from Fedora 16. The server is Mac OS X Server, set up by my coworker. I believe it requires Kerberos/LDAP authentication, so I would start the (probably arduous) ...
- 231
9
votes
1
answer
26k
views
getent passwd doesn't work; CentOS 7 and SSSD LDAP authentication
I installed CentOS 7 on a brand new server. All my servers get end user authentication through LDAPS on various system as RHEL5, Debian, and Solaris. I noticed there is a new layer on CentOS 7 which ...
- 246
8
votes
1
answer
74k
views
List LDAP users on linux client?
I have configured an LDAP client on my Linux machine. I am able to use su - myldapuser and use it. I just want to know, can I list all my LDAP users on this machine?
Referring to this link: How to ...
- 205
7
votes
2
answers
43k
views
How to specify LDAP user name for connecting to Active Directory?
I'm trying to integrate my program with LDAP. I have an Active Directory server here, which apparently speaks LDAP. I want to see what's on the server before I go off trying to debug my own code. I ...
- 2,919
7
votes
1
answer
25k
views
How to trace LDAP authentication failures?
I have a working LDAP server which I've confirmed can be used with LDAP clients, running on ec2 via jumpbox.
I've run authconfig to setup ldap based authentication, to point to the server:
authconfig ...
- 631
6
votes
3
answers
2k
views
Does a domain joined Windows 10 computer have built-in tools to query AD/LDAP?
I'm on a domain joined Windows 10 Computer and want to query the attributes of my own user account. Are there any built-in tools for that?
It is not an admin computer and I don't have RSAT installed. ...
- 1,185
5
votes
5
answers
78k
views
How to get Linux users list from LDAP
We've just linked one of our Linux host to LDAP and ActiveDirectory. Now I'm trying to check how I get list of users and their details from within the Linux side.
- 255
5
votes
1
answer
16k
views
LDAP filter to search for a DN
LDAP filters are powerful but I can't figure out how to search an object based on DN. Already I have many filter that searches for objects but searching for a specific DN does not seem to be supported....
- 827
4
votes
3
answers
22k
views
Why doesn't getent show OpenLdap users?
I'm trying to configure Ubuntu 10.04 so that I can login using ldap credentials.
I've followed these general configuration steps outlined in several tutorials I found:
1) Install libraries:
...
- 183
4
votes
2
answers
7k
views
Use curl to download an LDAP attribute value only
I am using the following curl command to download a value from an LDAP directory:
curl ldap://example.com/CN=ACME-Test-CRL,O=ACME?certificateRevocationList;binary -o crl.crl
The problem is it ...
- 41
4
votes
2
answers
1k
views
SonicWALL Imported LDAP User Password Too Short
(final) update: Dear friends, Dell support has transferred me to the dev team. They say its a bug. Too soon to tell if its fatal, but if I don's survive I want the bounty to go to .... ughhh
I'm ...
- 185
4
votes
2
answers
7k
views
How can I get Thunderbird to import a secure LDAP certificate?
I've got an LDAP server configured for in Thunderbird's address book (ldap.example.com). I'd like to use the SSL version, so I checked the 'Use SSL' box. It starts to work, but I get a certificate ...
user26986
4
votes
0
answers
2k
views
Why does AD return searchResRef (LDAP references) for every LDAP search?
The SearchResultReference message is pretty clearly in RFC 4511 section 4.5.3 (https://www.rfc-editor.org/rfc/rfc4511#section-4.5.3) but I am wondering about more specific details of why AD seems to ...
- 41
4
votes
0
answers
3k
views
SSH Failing with User not known for local user
I added a local user to my server (CentOS 6.5) but when I attempt to login as that user I'm getting denied by SSSD with the following error:
I can connect with my LDAP credentials fine but can't ...
- 433
3
votes
2
answers
4k
views
smbpasswd command not found on MacOS High Sierra
I need to change my Active Directory password at my office, we have documentation on linux to use smbpasswd command line. On Debian, this command can be found in samba-common-bin. I wish I could ...
- 332
3
votes
1
answer
6k
views
Apache php_ldap.dll error
I have apache with php 5.4 installed on a Windows 7 64bit machine. When I restart Apache I get the following:
PHP Startup: Unable to load dynamic library
'c:/PHP54/ext\\php_ldap.dll' - %1 is not a ...
- 213
3
votes
1
answer
7k
views
ldapmodify insufficient access (50)
I'm trying to enable logging in an openldap (slapd) server. So I tried to execute:
$ ldapmodify -D cn=admin,dc=domain,dc=tld -W -H ldap:/// <<EOF
> dn: cn=config
> changetype:modify
&...
- 188
3
votes
1
answer
2k
views
Adding custom schema to openldap
I want to setup my postfix with ldap authentication. I follow this tutorial https://blog.tnyc.me/postfix-with-ldap
I need to setup a PostfixBookMailAccount but therefore i need to load that schema. I ...
- 201
3
votes
1
answer
9k
views
Find out my bind DN in a Windows network
I am in a windows network and want to use Linux' LDAP search.
For this I need to find out my DN.
I am already logged in on a Windows computer using Outlook to the exchange server and this one seems ...
- 1,427
3
votes
1
answer
307
views
ldapsearch, follow dn-s
I'm somewhat confused about LDAP query syntax.
Suppose there are two inetOrgPerson records for two employees, M being manager of E (that is, there's a 'manager' attribute with manager's dn as a value ...
- 202
3
votes
1
answer
3k
views
How to use Apache Directory Studio with a proxy?
I want to connect to an LDAP server running on a server at ldap.subnet.example.com using Apache Directory Studio.
I am running Apache Directory Studio 2.0.0.v20200411-M15 with java-14-openjdk on ...
- 390
3
votes
1
answer
2k
views
LDAP: what objectClass to use for a service account?
I'm using Apache Directory Server to create a company directory. As well as people in my organisation, I have a few service accounts. These are used by applications (not people) to connect to LDAP.
...
- 283
3
votes
1
answer
2k
views
Is there any possibility to get group autorisation within subversion authz file?
as far as I understand groups must be defined within subversion authz file. But is there any possibility to define ldap groups within authz file?
I have man svn repositories and each repo has it's ...
- 31
3
votes
2
answers
7k
views
Public key authentication for LDAP users using local authorized_keys
We are using LDAP for account information. The environment is configured as follows ...
A CentOS 7 OpenLDAP directory server
A CentOS 7 client configured to use the directory server
authconfig has ...
- 33
3
votes
2
answers
566
views
Overloading LDAP
In my college there's an LDAP server managed by the staff. We can use this LDAP server from our machines, but cannot modify attributes (eg: user login shell).
We'd like to modify these attributes, so ...
- 1,151
3
votes
1
answer
1k
views
Diagnose Mac OS X Address Book LDAP problems
I've configured a LDAP server in my Address Book preferences on Snow Leopard. I determined the base DN from a helpful recipe on the web using ldapsearch.
I never get any search results. Has anyone ...
- 1,151
3
votes
0
answers
122
views
How to avoid hardcoded passwords on Apache httpd config file
I'm using an Apache Proxy with LDAP modules for authentication management. But I don't want to hardcode the password of the LDAP service user to query the domain.
I have already used other ...
- 131
3
votes
1
answer
708
views
What is best way to use LDAP-based services with Azure AD?
How can I connect Plastic SCM, which uses non-secure LDAP, to our Azure AD services for authentication?
Thanks!
- 131
3
votes
0
answers
771
views
LDAP, PAM, and expiring accounts
I'm using LDAP on a Debian 9.8 system. After receiving a
Your account has expired; please contact your system administrator
for one of my users, I tried unsuccessfully several of the solutions ...
- 31
3
votes
1
answer
20k
views
pam_sss(sshd:account): Access denied for user AD
sssd.conf:
[sssd]
domains = corp.com
config_file_version = 2
services = nss, pam
[domain/corp.com]
ad_domain = corp.lecapam.com
krb5_realm = CORP.COM
realmd_tags = manages-system joined-with-samba
...
- 51
3
votes
1
answer
699
views
Add all LDAP users to a local group?
Is there a way to add every LDAP users to a local group on Debian ?
I have more than 1500 ldap users, and they need to be in local groups ('video', 'audio' and 'games') on some computers (Raspbian)....
- 31
3
votes
1
answer
6k
views
Authentication against LDAP on Apache fails with password mismatch
I want to accomplish LDAP authentication on my Linux machine, but can't get it working. Currently, I get the following error in the Apache log: AH01617: user john.doe: authentication failure for "/": ...
- 31
3
votes
0
answers
1k
views
Automatically add LDAP directory to Outlook?
Is it possible to add a new LDAP-directory to the outlook addressbook with a script?
I haven't found an appropriate registry key. I would prefer a .reg file. A .msp file created with Office setup ...
- 31
3
votes
2
answers
34k
views
Difference between sudo su - root vs sudo su -
I know how is working 'sudo su - ' or sudo. But not sure why after sudo wave I just can't login on root with 'sudo su -' but with 'sudo su - root' im able to.
Where is the difference?
btw. Ldap is ...
- 31
2
votes
3
answers
9k
views
How give the permission to access subfolders in /root?
I need give the permission to read/write in this folder, which are subfolder of /root directory to mike.jackson (for some reason someone crete this folder inside /root) :
/root/Products/Metadata/...
- 1,381
2
votes
3
answers
22k
views
How to use LDAP to store sudoer information
We have a LDAP server and lots working servers. Our user's info are in LDAP http://fclose.com/b/281/ . But sudoers list is stored in /etc/sudoers. Now the question is, how to store sudoers list in ...
- 606
2
votes
2
answers
1k
views
Ansible - How to create dynamic inventory that fetches hosts from microsoft AD
I am using Ubuntu as a control-node, and would like to get the hosts from my domain controller (windows server 2022), the LDAP-Inventory Guide & microsoft.ad.ldap inventory – Inventory plugin for ...
- 23
2
votes
2
answers
2k
views
Are there any built in LDAP functions to manipulate strings?
I have a need to retrieve a value of a property in lower case, can LDAP have any built-ins to perform this? I know that I can do substrings and concatenations.
The need is for a software product we ...
- 627
2
votes
3
answers
5k
views
Alternative to Softerra's LDAP Administrator?
I am looking for an alternative to Softerra's LDAP Administrator, simply for the price is over-budget for a small team to test the LDAP credentials.
So I really appreciate if someone can point me to ...
- 493
2
votes
2
answers
24k
views
ldapsearch - Strong(er) authentication required - Transport encryption required
I'm trying search my company's AD with ldapsearch. However I always get the error:
ldap_bind: Strong(er) authentication required (8)
additional info: BindSimple: Transport encryption required....
- 440
2
votes
1
answer
563
views
How to make Thunderbird suggest favorite contacts first when sending mails?
My Thunderbird client is connected to the rather large LDAP directory of our company. When I start typing in the "To:" field, it lists all matching LDAP entries alphabetically. This list is very long ...
- 123
2
votes
2
answers
2k
views
Authentication to ActiveDirectory's LDAP succeeds with correct password OR no password
I'm working on LDAP authentication support for our web-application. During testing this functionality, I've noticed a very strange behavior: user can authenticate using correct password OR no password....
- 165
2
votes
1
answer
2k
views
OpenLDAP: Converting flat file (slapd.conf) to OLC (slapd.d)...can't access cn=config
I'm attempting to set up OpenLDAP. I was having trouble with the OLC config option, so I went with the slapd.conf style input as I'm a complete noob at LDAP and it was easier to understand.
I now ...
- 193
2
votes
3
answers
16k
views
How to join an Active Directory with a Linux machine
How can I join an Active Directory domain with a Linux machine?
Will it work with Ubuntu, Redhat, CentOS? Are there any with which it will not work?
- 53
2
votes
1
answer
494
views
Using a LDAP proxy to debug LDAP requests
I currently fail to configure an application using LDAP/ActiveDirectory properly. The application - from my point of view - is a black box. Therefore, I cannot see what goes wrong with the LDAP ...
- 243
2
votes
1
answer
11k
views
pam_sss access denied with kerberos authentication ok
I'm trying to use sssd with kerberos authentication and ldap on Ubuntu 18.04 (server and client machine). On Ubuntu client side I installed sssd sssd-tools packages. But when I want to log in to alice,...
- 43