Category:Active Directory
Last Updated:2011-08-03
Pull Sample ldap object
Below are instructions for performing a simple ldapsearch to verify successful ldap authentication and/or read a sample of source data.
If necessary, download an ldapsearch utility and copy to the UnitySync server. From a command prompt, execute the following: (replace parameters -b -h -D -w -p with same values as in use by the problematic connection.)
AD Example:
To pull'mail' for all objects for which it is populated:
ldapsearch -b "dc=domain,dc=com" -h 1.2.3.4 -D "name@domain.com" -w password "(mail=*)" mail
To pull all attributes for a single test object:
ldapsearch -b "dc=domain,dc=com" -h 1.2.3.4 -D "name@domain.com" -w password "(mail=name@domain.com)"
To pull all objects of a specific objectclass type (specific attributes):
ldapsearch -b "dc=domain,dc=com" -h 1.2.3.4 -D "name@domain.com" -w password "(objectclass=classtype)" mail,displayname,sn,givenname
Further Examples for other directorty types:
Ex55 Example:
ldapsearch -b "ou=site,o=organization" -h 1.2.3.4 -D "dc=domain,cn=name" -p 389 -w password "(mail=*)" mail
Notes Example:
ldapsearch -b "ou=organization,o=org" -h 1.2.3.4 -D "cn=Administrator,o=org" -w password "(mail=*)" mail
If the result is an error you have confirmed a basic inability to query the source directory using the specified port and login.