telnet <ldap_server_name> <port>
Currently there is no way to remove users automatically because of dashboard ownership issues.
Below is an example of the use case:
We have a group NonProd which in turn has Developers, Bi Analyst and Admin groups. When I do the sync based on NonProd group, I'd like to see group NONProd imported to Incorta and also nested groups of Developers/ BI Analyst and Admin groups and its members.
Check the settings for the property user.type
The following 3rd party tools can be used to test connectivity, credentials and test queries for LDAP.
Apache DS is an Open Source software that can be downloaded and installed on multiple platforms , It provides a GUI to connect to LDAP server.
ldapsearch is a command line tool that can be used to connect to LDAP and execute search queries. If the tool is not installed on your platform, it will need root access to be installed.
Given the below parameters:
Use this command:
ldapsearch -x -b "dc=wimpi,dc=net" -H ldap://127.0.0.1:10389 -D "uid=admin,ou=system" -W
The above command will output all entries in LDAP. In the PROD env this will be a lot of output so probably you will need to limit the output with search filter:
ldapsearch -x -b "dc=wimpi,dc=net" -H ldap://127.0.0.1:10389 -D "uid=admin,ou=system" -W "objectClass=person"
The above command will only output the entries with person object class.
An example for LDAP template
# Provide ldap url
# Example: ldap://HOST_NAME:PORT_NUM
# Distinguished Name to connect with
# Distinguished Name and password of a user in the ldap to authenticate with
# The attributes that will map login name, mail and name of Incorta user
# The attributes that will map name and attached users of Incorta group
# a filter to search users with given example
# a filter to search groups with given example
#user.type is optional with default (ldap) and indicates the user type, possible values are: internal, sso, and ldap
#ldap.follow.referral is optional with default (false) and indicate that it does not have a copy of a requested object and giving the client a location that is more likely to hold the object,
#which the client uses as the basis for a DNS search for a domain controller.
#Ideally, referrals always reference a domain controller that indeed holds the object.
# If set to true ,the search will be slower So Please don't use it unless you have multiple reference Site!