Uninstalling Openldap from the system is a real pain. Please make a tutorial, how can i completely uninstall and re-install OpenLDAP on the same server.
I'm not sure I understood the question clearly, Keshav. For authenticating to the LDAP, you need a bind DN. The DN (distinguished name) is generally a user identity (but not necessarily) located in some branches of the LDAP DIT. So for example, if your user identities are stored in a branch dc=fedji,dc=com, then the bind dn will be uid=user.0,dc=fedji,dc=com with its password. The top level administrators authenticate to the LDAP server using bind DNs such as cn=admin, cn=Administrator, cn=Directory Manager (depending on which LDAP server you are using).
Mention the attribute you want in the ldapsearch command and you'll get it: $ ldapsearch -h -p -D cn=admin -w -b ou=People,dc=example,dc=com uid=ravi uid mail The above ldapsearch command will return the "uid" and "mail" attributes from an ldap entry that has "ravi" as a value for "uid" attribute (search filter) from under the base Dn ou=people,dc=example,dc=com
Hi Rajesh without entering the attribute uid manually I want to get automatically for the currently logged user in his terminal basically I want to get user details for around 3k people so manually it's not possible.
Hello Ravi, I don't think I understood your requirement clearly. What exactly do you mean by logged in users ? LDAP is usually used as an identity repository by Access Management products, which in turn is responsible for keeping track of the user sessions. Ideally, you query the Access Management products to find active sessions.
@@RajeshRajasekharan i mean I have logged into one system and I want to know my details like LDAP ID , email address and Geo LDAP and all so I want ldapsearch search query in such a way that I don't need to enter any attribute manually and just by running the query it should give me all the output I wanted
Thanks for this. I was messing up with some LDAP basics and this video helped me sort them out.
Thank you very much for easy to understand and follow overview of LDAP basics.
Thank you, Mike, for your kind comment.
Hey this was really helpful. Been trying to wrap my head around ldap for a while but this made it very straightforward!
Thank you so much :-)
awesome teaching skills Rajesh ... you got the subject and you can present it well.
Thank you so much for your kind words, Kiran. Very encouraging.
Thanks, do u have videos for AD?
Thanks for sharing this. Can you also guide how can we use auto_range attribute with this.
Thanks for these very informative lessons on openldap - I am a newbie to openldap - how can I rectify entry -1 has no dn issue.
What operation is giving you this error ?Please post it here so I could take a look.
@@RajeshRajasekharan Thanks Rajesh for getting back - I have solved it since my post by swapping out libnss-ldap package.
@@mattaikay925 Thank you so much for letting me know. Good luck with everything, Mattai.
Thanks, its helping me
Very happy to know :-) Thanks for watching!
Nice Explanation
Thank you Ramesh
Uninstalling Openldap from the system is a real pain. Please make a tutorial, how can i completely uninstall and re-install OpenLDAP on the same server.
CAN YOU HELP ME TO configure ldap with bypass
Hi sir can we authenticate without ou value in LDAP
I'm not sure I understood the question clearly, Keshav.
For authenticating to the LDAP, you need a bind DN. The DN (distinguished name) is generally a user identity (but not necessarily) located in some branches of the LDAP DIT. So for example, if your user identities are stored in a branch dc=fedji,dc=com, then the bind dn will be uid=user.0,dc=fedji,dc=com with its password. The top level administrators authenticate to the LDAP server using bind DNs such as cn=admin, cn=Administrator, cn=Directory Manager (depending on which LDAP server you are using).
How to get specific user details like LDAP ID and e-mail id of the user using ldapsearch
Mention the attribute you want in the ldapsearch command and you'll get it:
$ ldapsearch -h -p -D cn=admin -w -b ou=People,dc=example,dc=com uid=ravi uid mail
The above ldapsearch command will return the "uid" and "mail" attributes from an ldap entry that has "ravi" as a value for "uid" attribute (search filter) from under the base Dn ou=people,dc=example,dc=com
@@RajeshRajasekharan for currently logged in user without giving attribute manually can we get it automatically?
Hi Rajesh without entering the attribute uid manually I want to get automatically for the currently logged user in his terminal basically I want to get user details for around 3k people so manually it's not possible.
Hello Ravi, I don't think I understood your requirement clearly. What exactly do you mean by logged in users ? LDAP is usually used as an identity repository by Access Management products, which in turn is responsible for keeping track of the user sessions. Ideally, you query the Access Management products to find active sessions.
@@RajeshRajasekharan i mean I have logged into one system and I want to know my details like LDAP ID , email address and Geo LDAP and all so I want ldapsearch search query in such a way that I don't need to enter any attribute manually and just by running the query it should give me all the output I wanted
"Ldap is a data store"... sure about that?
No, it is not. It is a protocol, and is explained in the video. The implementations of LDAP are used to store data.