[Fed-Talk] Re: LDAP
[Fed-Talk] Re: LDAP
- Subject: [Fed-Talk] Re: LDAP
- From: Alan Stepakoff <email@hidden>
- Date: Tue, 3 May 2005 13:55:49 -0700
With my AD I can use simple LDAPsearch queries using:
cn=users,dc=jpl,dc=nasa,dc=gov
obviously the jpl.nasa.gov will change.
I also have to authenticate to query it.
An authenticated bind would be of the form:
cn=un,cn=users,dc=jpl,dc=nasa,dc=gov,p=passwrd
where un is the your username and passwrd is your password. Any
valid authentication should allow you to query anyone in your AD.
I don't know if there is a way to have Entourage authenticate when it queries.
Alan Stepakoff
JPL
At 12:55 PM -0700 5/3/05, Dan O'Donnell wrote:
On 5/3/05 12:08 PM, "email@hidden"
<email@hidden> wrote:
Message: 4
Date: Tue, 3 May 2005 12:53:44 -0600
Of course, Apple Mail blows away entourage (IMHO). Already replacing
entourage with Apple mail on machines here that have Tiger.
Global Address book is the only hurdle... we are using LDAP.
Cannot get it to give a response to us, and our Exchange admins are
of no help.
Our old LDAP settings worked straight out of the box, now they are on
AD... any ideas what his OU=blah,O=blah stuff is?
I can connect, but not getting any response to queries... I can
connect to the old LDAP server (Exchange 5.5) with no problems, but
it has outdated information.
LDAP runs on port 389 (and 636 for ldaps).
Microsoft's Global Catalog runs on ports 3268 and 3269.
<http://www.iana.org/assignments/port-numbers>
Schema you'll want to get from your friendliest Active Directory sysadmin.
It's possible they used the same basic schema as in LDAP, but since AD
changed* some other schema your sysadmins may have changed these also.
(Making a change is more sysadmin work than simply leaving the existing
settings, so try the same schema first. You may get lucky.)
I've been able to get Entourage v.X, Entourage 11 (2004) and Address Book
all to read from Active Directory (Microsoft Global Catalog).
Entourage 10 is not easy to set up, and it breaks easily. Entourage 11 is a
much easier and better setup, but you must watch it carefully when the
wizard does its self-configuration for AD. If you have multiple domain
controllers on your WAN, it can look out across the WAN and pick up a DC
other than the one you want. This will mean you have to do a minor reconfig,
but it should at least get the port number right.
HTH,
DOD
--------------------
This email message is for the sole use of the intended recipient(s) and
may contain privileged information. Any unauthorized review, use,
disclosure or distribution is prohibited. If you are not the intended
recipient, please contact the sender by reply email and destroy all copies
of the original message.
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden