OpenLDAP
  • 24 Nov 2024
  • 2 Minutes to read
  • Dark
    Light
  • PDF

OpenLDAP

  • Dark
    Light
  • PDF

Article summary

OpenLDAP Software is an open source implementation of the Lightweight Directory Access Protocol.

Types of Assets Fetched

This adapter fetches the following types of assets:

  • Devices
  • Users

Parameters

  1. Host (required) - The hostname, IP address or the complete URL format of the OpenLDAP server that Axonius can communicate with via the Required Ports.

  2. User Name and Password (required) - The credentials for a user account that has the Required Permissions to fetch assets to log in for the simple bind.

  3. Use SSL - Specify whether to use the connection on a secure port. When selected, the secure port is usually set to 636.

  4. Port (optional) - The port used for the connection. A customized port can be used. The default is 389 for connections without SSL, and 636 for SSL connections.

  5. Users Custom Attributes (optional, comma-separated) - A comma-separated list of additional user attributes to fetch.

  6. Devices Custom Attributes (optional, comma-separated) - A comma-separated list of additional device attributes to fetch.

  7. Users Object Classes (required, comma-separated) - Enter one or more object classes of users, separated by commas.

  8. Devices Object Classes (required, comma-separated) - Enter one or more object classes of devices, separated by commas.

  9. Override Search Base (optional) - Specify the desired search base location to search for a particular directory object. When this parameter is left empty, the adapter uses the default search base location.

  10. Retrieve operational attributes (optional) - Select whether to retrieve LDAP operational attributes, which are used internally by the server.

  11. Fetch Devices (required, default: true) - Select whether to fetch devices.

  12. Fetch Users (required, default: true) - Select whether to fetch users.

  13. Use RACF Schema - Select this option to update the adapter that this LDAP Tree is from an IBM RACF server so it can use a proper schema to retrieve the tree nodes and sub-tree nodes.

  14. Search Receive Timeout (optional, default: 10) - This variable defines the length of time the adapter will wait for the LDAP Server to respond when searching, before throwing a timeout exception.

To learn more about common adapter connection parameters and buttons, see Adding a New Adapter Connection.

OpenLDAP.png


Advanced Settings

Note:

Advanced settings can either apply for all connections for this adapter, or you can set different advanced settings and/or different scheduling for a specific connection, refer to ​Advanced Configuration for Adapters.

  • Correlate Mail Using Owner Email - Select whether to populate the Mail field with the contents of the specific Owner Email field.
Note:

To learn more about Adapter Configuration tab advanced settings, see Adapter Advanced Settings.


Required Ports

Axonius must be able to communicate with the value supplied in Host via the following ports:

  • Port 389 for a connection without SSL
  • Port 636 for an SSL connection


Required Permissions

The value supplied in User Name must have read-only permissions for the OpenLDAP server.

Supported From Version

Supported from Axonius version 4.5


Was this article helpful?

What's Next