Scribd
Upload
21 views

Using LDAP Tool

Uploaded by

malek.larouci
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
21 views

Using LDAP Tool

Uploaded by

malek.larouci
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 13

LDAP- Using the ldp.

exe tool
The ldp.exe tool is available for the following Windows Server versions.
• Windows Server 2019
• Windows Server 2016
• Windows Server 2012 R2
• Windows Server 2012
• Windows Server 2008
• Windows Server 2008 R2

Its also available from computers (Professional and Enterprise editions only)
• Windows 10
• Windows 8.1 Note: The LDP.exe tool can be run from a
remote PC against the Active Directory
• Windows 8
Server. It does not need to reside on the
• Windows 7 Active Directory Server since its a Remote
• Windows Vista. Access tool.

Page 14 Xerox Internal Use


Only
LDAP – Installing the ldp.exe tool

To install the ldp.exe tool

- Click Start | Control Panel | Programs.

- Select Turn Windows features on or off

Note: You can copy the ldp.exe to any PC and launch the executable to
install it if needed.
Page 15 Xerox Internal Use
Only
LDAP – Install ldp.exe tool
Click the Add Features
link, then the Add
Features Wizard will
display.

Place a checkmark in the


box next to AD DS and AD
LDS Tools, this will install
the ldp.exe tool

Page 16 Xerox Internal Use


Only
LDAP – Using the ldp.exe tool

To launch the ldp.exe tool open a command prompt window


and from C:\ type ldp.exe

The Ldp Window will


display.

From the Connection menu,


select Connect…

Enter the Hostname or IP


of the LDAP Server and
the Port. If using SSL to
connect select the
checkbox for SSL.
Page 17 Xerox Internal Use
Only
LDAP – Using the ldp.exe tool

Look for the


defaultNamingConte
xt entry.

Highlight and copy the


DN for the AD Server.
In this example it is:
DC=Solutions,DC=co
m

Page 18 Xerox Internal Use


Only
LDAP – Using the ldp.exe tool

From the View menu, select Tree.

Paste the DN you previously


copied into the BaseDN
field.

Page 19 Xerox Internal Use


Only
LDAP – Using the ldp.exe tool

From the Connection menu,


select Bind…

Select Bind with


Credentials and enter the
User, Password, and
Domain of the account you
use to use to bind to LDAP.

Page 20 Xerox Internal Use


Only
LDAP – Using the ldp.exe tool

Once you Bind successfully and


Connect to the Base DN Tree
View, you should be able to
expand the Tree View of the AD
Server by clicking the + sign.

Page 21 Xerox Internal Use


Only
LDAP – Using the ldp.exe tool

DIT Root Warning: If you set the RAL and


RDSL to
CN=Users,DC=Solutions,DC=c
om
DocuShare would not be able to
O
R
find the test user in LDAP, since
it is not in the Users branch of the
AD Tree.

Relative Authentication Locator & Relative


Directory Service Locator (RAL and RDSL)
values to use when configuring the External
Domain.

Page 22 Xerox Internal Use


Only
LDAP – Using the ldp.exe tool

Since all my users EXCEPT test user are in


the Users branch I can configure the RAL
and RDSL to one of the following:

CN=Users,DC=Solutions,DC=com
or
DC=Solutions,DC=com

(since the Users branch is also located


under DC=Solutions,DC=com)

Page 23 Xerox Internal Use


Only
LDAP – Using the ldp.exe tool

If the users are split up into


different branches. Its
recommended that you set the
RAL and RDSL to a higher point
in the tree and enable subtree
search.

In this example: Set the DIT and


the RAL and RDSL to
DC=xeroxldap,DC=com if you
want to find the users in all the
branches of the subtree below
xeroxldap.com.
It is possible to set up separate external domains for each branch (Finance, Human
Resources, Manufacturing and Transportation). However, since DocuShare allows subtree
searching its preferable not to set it up that way. Some features in DocuShare require that
the DocuShare Domain name matches the LDAP domain name exactly (AutoLogin and
Office Integration).
Page 24 Xerox Internal Use
Only
Setting up LDAP
You must have the following information:

(This would be provided by the customer from


their LDAP Server)

• Hostname or IP of the LDAP Server.

• Port number of the LDAP Server.

• DIT Root.

• The User RDN Key.

• The Relative Authentication and Directory


Services Attributes.

• Object Class Attributes.

• LDAP user and group bind attributes.


Page 25 Xerox Internal Use
Only
LDAP Configuration

LDAP Host Name, IP or DNS


name of the LDAP & Port #
Optional: Select if using SSL

Enter the top-most container of the


directory tree containing all
Organizational Units and Users that will
access DocuShare.
Enter the alias for the attribute
CommonName.

Most Active Directory servers


require either an Agent or a
Service account login.
Explained in next slide
Page 26 Xerox Internal Use
Only

You might also like