LDAP Administration tool and ldaps

v6

#1

Hi,
Thank you so much for all the work already done.

Can I have access to the LDAP server with an admin tool like Apache Directory Studio ?
Connection on port 389 is OK but authentication failed in anyway with a standard binddn ( cn=root,dn=… … or cn=admin…) with “Invalid credentials”

What about ldaps ( secure ldap on port 636) ? Is there a way to force ldap server to listen only on port 636 et accept only secure connection ?

Have a good day…


LDAP Bind DN Connection
NS7/OpenLDAP clients with authentication? & TSL/SSL?
(Davide Principi) #2

Hi @alecks,

the STARTTLS command is supported on port 389, and is the preferred method if the clients have it.

Check the admin’s password has been correctly set. The admin’s DN should be

uid=admin,ou=People,dc=directory,dc=nh

or, if your domain part is example.com

uid=admin,ou=People,dc=example,dc=com

The port 636 is disabled by default: it could be enabled with a couple of commands…


LDAP Bind DN Connection
LDAP NS - Erpnext - Wordpress with SSO
#3

Thanks @davidep
Authentication is OK with uid=admin,ou=People and dc=(my/domain/com) on 389 STARTTLS.

Can I have access to cn=config too ?


(Davide Principi) #4

If I remember correctly, It is accessible only locally from the ldapi:// socket, as root user.

ldapsearch -Y EXTERNAL -b cn=config 

Can I ask why you need accessing it?


#5

I want to know if I can use the openldap Netherserver with some custom configuration

  • manage email aliases, perhaps with "ou=aliases "
  • manage multi-domains, perhaps with "ou=domains"
    etc…

#6

For exemple, what I need :