Code Repositories

Find and share code repositories
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Announcements
Check out our newest addition to the community, the Cloudera Data Analytics (CDA) group hub.

LDAP Connection Test

rlevas
Guru

Created on ‎05-09-2017 06:19 PM

Repo Description

Tests connecting to an LDAP server using different SSLSocketFactory implementations. The test connections to the specified LDAP URL, binds as some user (principal), and then searches for a user object using a base DN and a principal name. The result is the `CN` of the found object. SSL debugging is turned on to show the relevant SSL connection messages. The current implementation assumes the LDAP server is an Active Directory and searches for a user object using the `userPrincipalName` field.

Usage: 

$JAVA_HOME/bin/java -jar LDAPConnectionTest-1.0.jar <LDAP URL> <Base Container> <User Principal> <TLS Version> <Search User Principal> [Password]

Where:

  • LDAP URL - The LDAP or LDAPS URL for the relevant LDAP server, with or without the port.
    • ldaps://ad.host.com
    • ldaps://ad.host.com:636
    • ldap://ad.host.com
  • Base Container - The DN used to start the search operation
    • `CN=Users,DC=EXAMPLE,DC=COM`
  • User Principal - The principal name of the user to connect to the LDAP server as
  • TLS Version - The TLS protocol version to use when creating the `SSLSocketFactory` implementation
    • TLS - The JVM chooses the enabled TLS versions (for Java 1.7 TLS1 has been observed, for Java 1.8, TLS1.2 has been observed). The SSL socket us trusting, so no certificate validation is performed.
    • TLSv1 - Use TLSv1. The SSL socket us trusting, so no certificate validation is performed.
    • TLSv1.1 - Use TLSv1.1. The SSL socket us trusting, so no certificate validation is performed.
    • TLSv1.2 - Use TLSv1.2. The SSL socket us trusting, so no certificate validation is performed
    • TLSv1.2_NonTrusting - Use TLSv1.2. The SSL socket us non-trusting, so certificate validation is performed
  • Search User Principal - The principal name of the user object to search for - the attribute to match on is userPrincipalName
  • Password - Optional. The password for the user to connect to the LDAP server as. If not set, a prompt for the password will be displayed.

Example with password on command line:

$JAVA_HOME/bin/java -jar LDAPConnectionTest-1.0.jar "ldaps://ad.example.com" "CN=Users,DC=EXAMPLE,DC=COM" "me@EXAMPLE.COM" TLSv1.2 me@EXAMPLE.COM Hadoop1234!

Example with password prompt:

$JAVA_HOME/bin/java -jar LDAPConnectionTest-1.0.jar "ldaps://ad.example.com" "CN=Users,DC=EXAMPLE,DC=COM" "me@EXAMPLE.COM" TLSv1.2 me@EXAMPLE.COM
Password:
Repo Info
Github Repo URL https://github.com/rlevas/LDAPConnectionTest
Github account name rlevas
Repo name LDAPConnectionTest
7,879 Views
0 Kudos
Take a Tour of the Community
Don't have an account?
Register
Your experience may be limited. Sign in to explore more.
Announcements
Product Announcements
CDP Public Cloud: May 2023 Release Summary
What's New @ Cloudera
Cloudera Operational Database (COD) provides enhancements to the --scale-type CDP CLI option
What's New @ Cloudera
Cloudera Operational Database (COD) UI supports creating a smaller cluster using a predefined Data Lake template
What's New @ Cloudera
Cloudera Operational Database (COD) supports scaling up the clusters vertically
Product Announcements
CDP Public Cloud: April 2023 Release Summary
View More Announcements
Version history
Last update:
‎05-09-2017 06:19 PM
Updated by:
Guru
Contributors