Question & Answer
Question
How to setup specific searching for LDAP authentication in RTM?
Cause
When setting up LDAP authentication in RTM, there are three modes to choose from: No Searching, Anonymous Searching and Specific Searching.
If searching is needed to find user's Distinguished Name (DN) and your LDAP server requires credential to perform DN look-up, then Specific Searching is the choice.
Answer
There are four required fields of LDAP Specific Search Settings: Search Base, Search Filter, Search DN and password.
Except for the password, you can find the rest info from a LDAP user record.
For example, below is a user LDAP record:
strek, people, supply.abc.com
dn: cn=Star Trek,ou=people,dc=supply,dc=abc,dc=com
objectClass: inetOrgPerson
objectClass: organizationalPerson
objectClass: top
objectClass: sudixAccount
objectClass: person
objectClass: shadowAccount
objectClass: sambaSamAccount
cn: Star Trek
gidNumber: 10007
homeDirectory: /home/strek
sn: strek
uid: strek
uidNumber: 11111
loginShell: /bin/csh
mail: strek@supply.abc.com
employeeType: primary
...
In this case
Search Base can be: ou=people,dc=supply,dc=abc,dc=com
Search Filter is the field name that contains the username: (uid=<username>)
Search DN can be any user's DN, e.g. cn=Star Trek,ou=people,dc=supply,dc=abc,dc=com
The password is then the password for the user Star Trek
You can also verify using ldapsearch command
ldapsearch -h ldap1.eng.supply.abc.com -p 389 -x -D 'cn=Star Trek,ou=people,dc=supply,dc=abc,dc=com' -w <pwd> -b 'ou=people,dc=supply,dc=abc,dc=com' -s sub '(uid=strek)'
Related Information
Was this topic helpful?
Document Information
Modified date:
17 June 2018
UID
isg3T1027219