LDAP Actions
The Blink platform enables you to perform actions using the Lightweight Directory Access Protocol.
LDAP is an open, vendor-neutral, industry standard application protocol for accessing and maintaining distributed directory information services over an Internet Protocol (IP) network.
Creating an LDAP connection
In order to create a connection to an LDAP server, you must have it exposed to your Blink Runner.
By default, Blink will connect over port 389 for LDAP or port 636 for LDAPS.
If using secure LDAP, the certificate must be generated by a valid certificate authority and not self-signed.
Creating your connection
In the Blink platform, navigate to the Connections page > Add connection. A New Connection dialog box opens displaying icons of external service providers available.
Select the LDAP icon. A dialog box with name of the connection and connection methods appears.
(Optional) Edit the name of the connection. At a later stage you cannot edit the name.
Select LDAP as the method to create the connection.
Fill in the parameters:
The URI for your LDAP server host, including the protocol (either
ldap://
orldaps://
) and optionally a port number.The
DN
(Distinguished Name) to connect as.Password to use for authentication. Leave this blank if the server supports unauthenticated access.
Which LDAP Protocol version to use. If left empty, Blink will negotiate with the server to choose the best supported version.
Which Distinguished Name to search from. This can be interpreted as the "root path" of the directory to connect to, while the
dn
parameter is the "username".Can also be overridden per search.
If left empty, the server chooses the default.
Ignore Certificate Validation - Whether certificate should be ignored or validated.
(Optional) Click Test Connection to test it.
Click Create connection. The new connection appears on the Connections page.
Actions
LDAP Search
Opens a connection to an LDAP server, binds, and performs a search using specified parameters.
For more information, view the Linux documentation.
Parameter | Description |
---|---|
Filters | LDIF style search filter. |
Base | If left empty, the one specified in the connection will be used, otherwise the server will choose the default. |
Attributes | Comma-separated list of attributes to return. Put "*" for all attributes. |
Scope | Specify the scope of the search to be one of base, one, or sub to specify a base object, one-level, or subtree respectively. |
LDAP Add
Opens a connection to an LDAP server, binds, and adds entries.
For more information, view the Linux documentation.
Parameter | Description |
---|---|
Code | A series of LDIF-format entries to add. |
LDAP Modify
Opens a connection to an LDAP server, binds, and modifies entries.
For more information, view the Linux documentation.
Parameter | Description |
---|---|
Code | A series of LDIF-format modification commands. |
LDAP Delete
Opens a connection to an LDAP server, binds, and deletes entries.
For more information, view the Linux documentation.
Parameter | Description |
---|---|
Distinguished Names | A line-separated series of Distinguished Names to delete, in LDAPv3 string representation. |
Recursive Delete | Do a recursive delete. If the DN specified isn't a leaf: it's children, and all their children are deleted down the tree. No verification is done, so if you add this switch, LDAP Delete will delete large portions of your tree. Use with caution. |