Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

ldapsearch with username and password

Tags:

ubuntu-14.04

ldap

openldap

Here is my LDAP ORG Structure:

LDAP ORG Structure

I created user with first, last name with password. But it is not working when am trying to connect using jdbc. Error says invalid credentials. Then I tried ldapsearch as follows:

I followed this process for users and group creation: 

root@ip:/home# ldapwhoami
SASL/DIGEST-MD5 authentication started
Please enter your password:
ldap_sasl_interactive_bind_s: Invalid credentials (49)
    additional info: SASL(-13): user not found: no secret in database

root@ip:/# ldapsearch -x -LLL -h ip -D username -w password -b"cn=admin,dc=ivhdev,dc=local" -s sub "(objectClass=*)" "givenName=username*"
ldap_bind: Invalid DN syntax (34)
    additional info: invalid DN

Please suggest/correct me, if am passing the right info in DN syntax. I am unable to validate the user credentials with their name and password.

like image 505
jack Avatar asked Mar 16 '17 21:03

jack

People also ask

How do I authenticate ldapsearch?

The easiest way to search LDAP is to use ldapsearch with the “-x” option for simple authentication and specify the search base with “-b”. If you are not running the search directly on the LDAP server, you will have to specify the host with the “-H” option.

What is ldapsearch command?

ldapsearch is a command-line tool that opens a connection to an LDAP server, binds to it, and performs a search using a filter. The results are then displayed in the LDIF. Note. The LDIF is used to represent LDAP entries in a simple text format.

How do I get a list of LDAP users?

I get list of all the users of LDAP using the following command ldapsearch -x -LLL uid=* > result . There is a complete list of these records.

2 Answers

The -D option takes the DN for logging in to your LDAP server.

The -b option takes the search base in your LDAP tree where you want to search for the user's given name.

So, your ldapsearch command becomes:

ldapsearch -x -LLL -h ip -D 'cn=admin,dc=ivhdev,dc=local' -w password -b 'dc=users,dc=local' -s sub '(objectClass=*)' 'givenName=username*'
like image 55
anacron Avatar answered Sep 20 '22 13:09

anacron

If you use the Apache Directory Studio (http://directory.apache.org/studio/) you can see the actual ldapsearch commands used by the application. Maybe this is useful for anyone.

like image 28
aemaem Avatar answered Sep 18 '22 13:09

aemaem
Sign in to Comment

Related questions

Testing authentication in Django
The LDAP server is unavailable
Ldap error code 32
ldap_sasl_interactive_bind_s: No such attribute (16)
Connecting to LDAP from C# using DirectoryServices
How to search in multiple domains using System.DirectoryServices.AccountManagement?
how to accept self-signed certificates for JNDI/LDAP connections?
List all computers in active directory
LDAP - Retrieve a list of all attributes/values?
How to set/change Active Directory user password across domains using C# .NET?
Flask authentication using LDAP
django auth ldap
LDAP and PHP connection failure
Handling roles when authenticated to active directory with spring security 3.1
What happens on the wire when a TLS / LDAP or TLS / HTTP connection is set up?
JNDI with Active Directory PartialResultException
Tomcat 8 - LDAP: NameNotFoundException error code 32, remaining name empty string
Is LDAP binding account required for user authentication?
How to debug Gitlab LDAP authentication?
Git with ldap authorization

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!