Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [ldapsearch]

14 questions
2
votes
0 answers

OpenLDAP Meta backend to return one result

I have configured OpenLDAP to act as a proxy server via meta backend to do remote queries to two different companies' Active Directory servers. Everything works correctly in terms of pulling information from both domains. However... we have a case…
Chris
  • 21
  • 2
2
votes
0 answers

Last login a user in OpenLdap

I am running openldap 2.4.45. Is there anyway I can get the last login time of a user using authtimestamp or any other attribute?
Gurkan Gurcan
  • 21
  • 1
1
vote
1 answer

ldapsearch finds my account/user, sssd does not

I am trying to setup a new Server(Ubuntu 22.04 LTS) and authenticate users using organization accounts. This is the public Documentation provided: https://www.hs-regensburg.de/supportwiki/doku.php?id=en:public:netz:auth When executing ldapsearch…
Sammy
  • 13
  • 3
1
vote
2 answers

ldapsearch keeps failing even though the username/password supplied are correct

Working to tie a server into ldap (active directory) and been struggling to get a simple bind working. The commands I have tried are: ldapsearch -x -H ldap://192.168.10.10 -b "dc=example,dc=domain,dc=com" -D…
IT_User
  • 211
  • 1
  • 2
  • 15
1
vote
0 answers

LDAPS (Can’t contact LDAP server ) trusting CA-Cert on ubuntu

I installed my Ca-cert like this: chmod 644 /usr/local/share/ca-certificates/root-ca.crt && update-ca-certificates this is successful but somehow ldapsearch with ldaps still won't connect to the server (Can’t contact LDAP server). without ssl the…
friendly joe
  • 11
  • 4
1
vote
1 answer

ldaps SRV resolution not working

I have an AD environment and in ldapsearch, I am able to use SRV records in DNS to resolve the LDAP servers in the domain and in a site. This works great on the usual ldap port on 389, with basic auth and STARTTLS. However, some horrible clients…
LeeM
  • 1,218
  • 9
  • 13
0
votes
0 answers

Apache with SSO and group-based authentification

I would like to configure SSO in Apache incl. group-based authentication. It means that users, who are a member of a particular group, should be able to log in to the website without entering the login data. Users, who aren't a member of the group,…
honeybee
  • 1
  • 1
0
votes
1 answer

Migrating OpenLDAP data from 2.4 to 2.5

I have gone through documentation online and on some forums but I am stuck on importing data from ldap 2.4 to 2.5 (Migrating to a new server as well). Here are the steps I did and the error I am receiving. (There were multiple other errors but that…
tvziem
  • 1
0
votes
0 answers

Replace anonymous ldapsearch command with curl command?

I have this working ldapsearch command for connecting anonymously to an internal ldap server: $ ldapsearch -h my.host -p 389 -x -LLL -s base -b "" namingContexts dn: namingContexts: DC=org,DC=sample Now I would like to list the same using curl: $…
u123
  • 247
  • 7
  • 21
0
votes
0 answers

ldaps does not work with ldapsearch

I'm running ldapsearch against a active directory server, with ldap protocol it works: ldapsearch -h IP -p 389 -b 'DC=testnet,DC=com' -D 'CN=admin,CN=Users,DC=testnet,DC=com' -w 'XX' with ldaps protocol it fails: ldapsearch -H…
daisy
  • 747
  • 4
  • 13
  • 28
0
votes
0 answers

AD - memberOf attribute missing on some accounts

On my AD domain some users do not have "memberOf" attribute set, so these accounts do not appear in search results when I perform an LDAP query like this: memberOf=CN=Group_A,OU=G-Security,OU=CB-Groups,OU=company,DC=lan,DC=name,DC=it Performing that…
J.B.
  • 305
  • 7
  • 22
0
votes
2 answers

LDAP - Add a filter to an LDAP URL so that only users belonging to a certain group can access the app

We enable an application to use LDAP. In the configuration of the application, we need to inform a URL to connect to LDAP. We are currently providing the following URL... ldap://10.2.0.5:389/dc=domain,dc=abc,dc=de?uid QUESTION: We need to add a…
Eduardo Lucio
  • 253
  • 3
  • 13
0
votes
1 answer

LDAP doesn't return a specifi sAMAccountName unless I explicitly search for it

i.e. I have a username - tonysmith, and when I run the query for all accounts in the DC, tonysmith isn't returned unless I specifically query for sAMAccountName=tonysmith. What gives?
Stephen K
  • 162
  • 7
0
votes
1 answer

Openldap backup > restore omits certain attributes

Migrating from Debian Jessie (openldap 2.4.40) to Debian Buster (openldap 2.4.47), I came across a few bumps but the last one is just baffling. First issue: ldapsearch does not return all attributes by default - you have to list them…
zenlord
  • 197
  • 1
  • 8