LDAP


What is LDAP?

LDAP - meaning Lightweight Directory Access Protocol is a service provided by WMI enabling usage of directory services in the LABS domain.

How to connect with our LDAP server?

Informations required to connect:

  • server name: ldap://labs.wmi.amu.edu.pl
  • protocol type: LDAPS (TLS)
  • port: 636
  • CA certificate: ca_labs.wmi.amu.edu.pl.pem
  • accounts suffix: labs.wmi.amu.edu.pl

To connect from outside of the faculty's network VPN is necessary.

Example implementations in Java, Python and C# are available below. Every of those solutions requires other method of adding CA certificate to trusted list.

Java

CA certificate must be added to local trusted certificates store.

In case of a standard Windows installation one should from an administrative cmd modify certificate store JRE included in JDK:

C:\Program Files\Java\jdk1.7.0_51\bin>keytool -import -file <path to ca_labs.wmi.amu.edu.pl.pem> -keystore ..\jre\lib\security\cacerts

Then enter password (default changeit) and proceed along with the instructions.

Example program: LDAPJava.zip

Change credentials in source code to your own.

Python

Example program: py_ldap.zip

Required is Python 2.7 and library python-ldap.

Adding a certificate to trusted happens directly in code through setting ldap.OPT_X_TLS_CACERTFILE.

C#;

CA certificate must be added to local trusted certificates store.

In case of a standard .NET Windows installation one should add a certificate from an administrative cmd:

certutil -addstore -enterprise -f -v root <ścieżka do ca_labs.wmi.amu.edu.pl.pem>

Example program: CLDAPExample.zip

Change credentials in source code to your own.