Thursday, 3 November 2011

study LDAP

Try to connect the LDAP server of computing school using jxplorer.
It is fine when I use the C28 14 Desktop with the following parameters:

Host: 10.52.1.246
Protocol: LDAP v3
Port: 389
Base DN: O=RGU
Secutiry:
Level: Anonymous

But doesn't work when I choose the SSL+User+Password and doesn't work on my laptop neither in anonymous nor SSL+User+Password , and whatever I enable or disable the proxy.

Even I can connect the LDAP server and get some data, but what does those data means?
How those data can help this project?


After discussed with Dr. hui and follow his suggestion. I connected to the LDAP server successfully!
The parameters are:
Host: 10.52.1.246            Port: 636
Protocol:  LDAP v3
Base DN: O=RGU

Level:  SSL+User+Password
User DN: cn=1019157,ou=students,ou=users,ou=comp,ou=destech,o=rgu
Password: the same with login to the Novell Network

But when I tried at 10/11/2011, just a few days later, I used the same parameters, it didn't work!

Is it because I changed the password of Novell Network? But neither the old or the new password didn't work.

The error information is like below:

Error opening connection:
simple bind failed: 10.52.1.246:636

javax.naming.CommunicationException: simple bind failed: 10.52.1.246:636 [Root exception is javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: Invalid Server Certificate: The server certificate could not be verified, as it has a bad chain back to a known CA.  raw error: sun.security.validator.ValidatorException: PKIX path validation failed: java.security.cert.CertPathValidatorException: timestamp check failed]

Posted by at

3 comments:

  1. jun wu4 November 2011 at 09:57

    The user dn is like a reverse tree of LDAP server.
    Like
    World
    + RGU
    + Destech
    + Comp
    + users
    + staff
    + students
    + 1019157
    So, the User Dn is:
    cn=1019157,ou=students,ou=users,ou=comp,ou=destech,o=rgu

    What is the meaning of cn,ou,o?

    ReplyDelete
  2. jun wu4 November 2011 at 11:11

    cn=John Smith,ou=Accounts,o=My Company,c=US

    The comma marks each division in the reference, and the sequence is read from right to left. You would read this dn as:
    country = US
    organization = My Company
    organizationalUnit = Accounts
    commonName = John Smith

    so , for
    cn=1019157,ou=students,ou=users,ou=comp,ou=destech,o=rgu
    means,
    commonName = 1019157
    organizationalUnit = students
    organizationalUnit = users
    organizationalUnit = comp
    organizationalUnit = destech
    organization = RGU

    don't have country

    ReplyDelete
  3. jun wu4 November 2011 at 12:31

    Try to connect LDAP server using php scripts.

    But give me the fatal message...

    Fatal error: Call to undefined function ldap_connect() in E:\Homes\Student\1019157\project_elective_module\phpConnectLDAP.php on line 31

    Maybe because didn't install the php5-ldap module?

    ReplyDelete

Subscribe to: Post Comments (Atom)