> ## Documentation Index
> Fetch the complete documentation index at: https://docs.blinkops.com/llms.txt
> Use this file to discover all available pages before exploring further.

# LDAP Actions

> Use LDAP actions to query and manage directory services within your Blink workflows.

The Blink platform enables you to perform actions using the Lightweight Directory Access Protocol.

## Creating an LDAP connection

In order to create a connection to an LDAP server, you must have it exposed to your Blink Runner.

By default, Blink will connect over port 389 for LDAP or port 636 for LDAPS.

If using secure LDAP, the certificate must be generated by a valid certificate authority and not self-signed.

### Creating your connection

1. In the Blink platform, navigate to the **Connections** page > **Add connection**. A New Connection dialog box opens displaying icons of external service providers available.

2. Select the **LDAP** icon. A dialog box with name of the connection and connection methods appears.

3. (Optional) Edit the name of the connection. At a later stage you cannot edit the name.

4. Select **LDAP** as the method to create the connection.

5. Fill in the parameters:

   * The URI for your LDAP server host, including the protocol (either `ldap://` or `ldaps://`) and optionally a port number.

   * The `DN` (Distinguished Name) to connect as.

   * *Password* to use for authentication. Leave this blank if the server supports unauthenticated access.

   * Which LDAP *Protocol* version to use. If left empty, Blink will negotiate with the server to choose the best supported version.

   * Which Distinguished Name to search from.
     This can be interpreted as the "root path" of the directory to connect to, while the `dn` parameter is the "username".

     Can also be overridden per search.

     If left empty, the server chooses the default.

   * Ignore Certificate Validation - Whether certificate should be ignored or validated.

6. (Optional) Click **Test Connection** to test it.

7. Click **Create connection**. The new connection appears on the **Connections** page.

## Actions

### LDAP Search

Opens a connection to an LDAP server, binds, and performs a search using specified parameters.

For more information, view the [Linux documentation.](https://man7.org/linux/man-pages/man1/ldapsearch.1.html)

<div className="integrations-table">
  | Parameter  | Description                                                                                                                  |
  | ---------- | ---------------------------------------------------------------------------------------------------------------------------- |
  | Filters    | LDIF style search filter.                                                                                                    |
  | Base       | If left empty, the one specified in the connection will be used, otherwise the server will choose the default.               |
  | Attributes | Comma-separated list of attributes to return. Put "\*" for all attributes.                                                   |
  | Scope      | Specify the scope of the search to be one of base, one, or sub to specify a base object, one-level, or subtree respectively. |
</div>

### LDAP Add

Opens a connection to an LDAP server, binds, and adds entries.

For more information, view the [Linux documentation.](https://linux.die.net/man/1/ldapadd)

<div className="integrations-table">
  | Parameter | Description                             |
  | --------- | --------------------------------------- |
  | Code      | A series of LDIF-format entries to add. |
</div>

### LDAP Modify

Opens a connection to an LDAP server, binds, and modifies entries.

For more information, view the [Linux documentation.](https://linux.die.net/man/1/ldapmodify)

<div className="integrations-table">
  | Parameter | Description                                    |
  | --------- | ---------------------------------------------- |
  | Code      | A series of LDIF-format modification commands. |
</div>

### LDAP Delete

Opens a connection to an LDAP server, binds, and deletes entries.

For more information, view the [Linux documentation.](https://linux.die.net/man/1/ldapdelete)

<div className="integrations-table">
  | Parameter           | Description                                                                                                                                                                                                                                         |
  | ------------------- | --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
  | Distinguished Names | A line-separated series of Distinguished Names to delete, in LDAPv3 string representation.                                                                                                                                                          |
  | Recursive Delete    | Do a recursive delete. If the DN specified isn't a leaf: its children, and all their children are deleted down the tree. No verification is done, so if you add this switch, LDAP Delete will delete large portions of your tree. Use with caution. |
</div>
