Presentation is loading. Please wait.

Presentation is loading. Please wait.

LDAP APIs CNS 4650 Fall 2004 Rev. 2.

Published byJohnathan Wells Modified over 6 years ago

Similar presentations

Presentation on theme: "LDAP APIs CNS 4650 Fall 2004 Rev. 2."— Presentation transcript:

1 LDAP APIs CNS 4650 Fall 2004 Rev. 2

2 LDAP C APIs OpenLDAP Mozilla/Netscape Novell LDAP SDK Microsoft ADSI

3 LDAP C APIs Most of the LDAP C SDKs are similar Based of the LDAP RFC
Usually slight difference between each

4 PERL LDAP API Original PERL LDAP API was PerLDAP
Net::LDAP preferred API Net::LDAP does not require a C compiler to install

5 Other APIs PHP Python Java

6 Basic LDAP Search Steps
Create connection Bind (if needed) Perform search Display results Close connection

7 Create Connection C API PERL API ld - LDAP Handle
#include <ldap.h> LDAP *ld //LDAP Handle ld = ldap_init(”ldap.somewhere.com”, 389); use Net::LDAP; my $conn = new Net::LDAP("tux.sinemas.net"); ld - LDAP Handle ldap_init() - allocate LDAP handle ldap_open() is also available. But, eventually it will be dropped. ldap_init() is preferred because a LDAP handle is allocated but no connection occurs. conn - LDAP Handle Net::LDAP() - allocate LDAP handle

8 Bind (if necessary) C API PERL API rc - integer return value
... rc = ldap_simple_bind_s(ld, MY_DN, MY_PWD); ... $conn->bind(dn=>MY_DN,password=>MY_PWD) rc - integer return value ldap_simple_bind_s() - simple bind ld - LDAP Handle MY_DN: dn of user to authenticate MY_PWD: password of user There are other ldap_bind_* functions for SASL, Kerberos IV, etc. conn - LDAP Handle conn->bind() - simple bind

9 Perform Search C API PERL API rc - integer return value
... rc = ldap_search(ld, base, scope, filter, attrs, attrsonly); ... $mesg = $conn->search(base=>base,scope=>scope, filter=>filter, attrs=>attrs); rc - integer return value ldap_search() - search ld - LDAP Handle base: where to search from (ou=dev) scope: LDAP_SCOPE_ONELEVEL or LDAP_SCOPE_SUB filter: What to look for attrs: what I want returned attrsonly: 0 or 1 return attribute name and values mesg - Search return value conn->search() - search base: where to search from (ou=dev) scope: sub or onelevel filter: What to look for attrs: what I want returned

10 Search Filters Filter is encased in ( ) Wildcard - * Boolean Examples
& - AND | - OR ! - NOT Examples (cn=Dan Sinema) (&(cn=Dan Sinema)(objectclass=user)) (cn=Dan *)

11 Perform Search C API PERL API rc - integer return value
... rc = ldap_search(ld, base, scope, filter, attrs, attrsonly); ... $mesg = $conn->search(base=>base,scope=>scope, filter=>filter, attrs=>attrs); rc - integer return value ldap_search() - search ld - LDAP Handle base: where to search from (ou=dev) scope: LDAP_SCOPE_ONELEVEL or LDAP_SCOPE_SUB filter: What to look for attrs: what I want returned attrsonly: 0 or 1 return attribute name and values mesg - Search return value conn->search() - search base: where to search from (ou=dev) scope: sub or onelevel filter: What to look for attrs: what I want returned

12 Display Results C API result, e: LDAPMessage structure
LDAPMessage *result, e; char* attribute; BerElement *ber; char** vals; ... e = ldap_first_entry(ld, result ) attribute = ldap_first_attribute(ld, e, ber ) vals = ldap_get_values(ld, e, attribute) result, e: LDAPMessage structure attribute: char string ber - BER structure (LDAP returns data BER encoded) vals: array of strings ldap_first_entry(): Get first returned entry, use ldap_next_entry() after ldap_first_attribute(): Get the first attribute of the entry ldap_get_values(): Get the attribute values

13 Display Results PERL API
... $ldif = new Net::LDAP::LDIF("-","w"); for ($i = 0; $i < $mesg->count; $i++) { my $entry = $mesg->entry($i); $ldif->write_entry($entry); } $ldif->done; ldif - allows printing of entries in LDIF format mesg - LDAP Handle entry - Entry contained in the LDAP Handle ldif->write_entry() - write in an LDIF format

14 Close Connections C API PERL API rc - integer return value
... rc = ldap_unbind(ld); ... $conn->unbind; rc - integer return value ldap_unbind() - destroy LDAP handle ld - LDAP Handle conn - LDAP Handle conn->unbind() - destroy LDAP Handle

15 Resources http://www.openldap.org - Manual Pages (C Language)
- Source Code (PERL)

Download ppt "LDAP APIs CNS 4650 Fall 2004 Rev. 2."

Similar presentations

PHP Modules LDAP and MySQL. External Functions In addition to the usual programming functions (arrays, date and time, typing, mathematical, etc), PHP.

PHP Modules LDAP and MySQL. External Functions In addition to the usual programming functions (arrays, date and time, typing, mathematical, etc), PHP.
The Sherlock Project Purdue University, Department of Computer Sciences Sponsored by Tellabs, Inc. Doug Clark - Group Leader Tobey Pasheilich Raj Talwar.

The Sherlock Project Purdue University, Department of Computer Sciences Sponsored by Tellabs, Inc. Doug Clark - Group Leader Tobey Pasheilich Raj Talwar.
CPE 401 / 601 Computer Network Systems

CPE 401 / 601 Computer Network Systems
Directory & Naming Services CS-328 Dick Steflik. A Directory.

Directory & Naming Services CS-328 Dick Steflik. A Directory.
LDAP LIGHT WEIGHT DIRECTORY ACCESS PROTOCOL PRESENTATION BY ALAKESH APURVA DHAN AND ASH.

LDAP LIGHT WEIGHT DIRECTORY ACCESS PROTOCOL PRESENTATION BY ALAKESH APURVA DHAN AND ASH.
03/07/08 © 2008 DSR and LDAP Authentication Avocent Technical Support.

03/07/08 © 2008 DSR and LDAP Authentication Avocent Technical Support.
LDAP: Information Model Part 2 CNS 4650 Fall 2004 Rev. 2.

LDAP: Information Model Part 2 CNS 4650 Fall 2004 Rev. 2.
DEV-4: OpenEdge® in an LDAP World

DEV-4: OpenEdge® in an LDAP World
1 Internet Based Applications Lightweight Directory Access Protocol (LDAP) Piotr Wierzejewski.

1 Internet Based Applications Lightweight Directory Access Protocol (LDAP) Piotr Wierzejewski.
23/4/2001LDAP Overview - HEPix - LAL 2001 LDAP Overview HEPix – LAL Apr. 2001 Michel Jouvin

23/4/2001LDAP Overview - HEPix - LAL 2001 LDAP Overview HEPix – LAL Apr Michel Jouvin
Netprog: LDAP1 Lightweight Directory Access Protocol (LDAP) Refs: –Netscape LDAP server docs – U. of Michigan LDAP docs – www.openldap.org docs –RFCs:

Netprog: LDAP1 Lightweight Directory Access Protocol (LDAP) Refs: –Netscape LDAP server docs – U. of Michigan LDAP docs – docs –RFCs:
LDAP Search Criteria Fall 2004 Rev. 2. LDAP Searches Can be performed on Single directory entry Contents of a single container Entire subtree Required.

LDAP Search Criteria Fall 2004 Rev. 2. LDAP Searches Can be performed on Single directory entry Contents of a single container Entire subtree Required.
Www.novell.com Using ACLs in LDAP: Creating a Secure eDirectory Infrastructure Mike Richichi Assistant Director of Academic Technology, Drew University.

Using ACLs in LDAP: Creating a Secure eDirectory Infrastructure Mike Richichi Assistant Director of Academic Technology, Drew University.
GRID Centralized management of the Globus grid-mapfile Carlo Rocca INFN, Catania.

GRID Centralized management of the Globus grid-mapfile Carlo Rocca INFN, Catania.
SURAgrid Account Mgmt Tool Case Study: Kennesaw State University Graduate Research Assistant – Kennesaw State University.

SURAgrid Account Mgmt Tool Case Study: Kennesaw State University Graduate Research Assistant – Kennesaw State University.
From LDAP to Patron Load From LDAP to Patron Load Generating a patron update SIF file from an LDAP directory dump Michael Doran, Systems Librarian Endeavor.

From LDAP to Patron Load From LDAP to Patron Load Generating a patron update SIF file from an LDAP directory dump Michael Doran, Systems Librarian Endeavor.
Building a KDC. Kerberos Implementations RedHat 5 comes with MIT Kerberos 1.6 Ubuntu 10.04 LTS comes with MIT Kerberos 1.8.1 Admin through CLI, but from.

Building a KDC. Kerberos Implementations RedHat 5 comes with MIT Kerberos 1.6 Ubuntu LTS comes with MIT Kerberos Admin through CLI, but from.
Creating an LDAP Patron Authentication Adaptor Michael Doran, Systems Librarian University of Texas at Arlington Endeavor Users Group Meeting, Chicago,

Creating an LDAP Patron Authentication Adaptor Michael Doran, Systems Librarian University of Texas at Arlington Endeavor Users Group Meeting, Chicago,
Information Technologies Jeremy Mortis 1 hi LDAP The Online Directory.

Information Technologies Jeremy Mortis 1 hi LDAP The Online Directory.
Extending OpenLDAP Luke Howard PADL Software Pty Ltd Copyright © 2003 PADL Software Pty Ltd. All rights reserved. PADL is a registered trademark of PADL.

Extending OpenLDAP Luke Howard PADL Software Pty Ltd Copyright © 2003 PADL Software Pty Ltd. All rights reserved. PADL is a registered trademark of PADL.

Similar presentations

Ads by Google