Directory Assistance for LDAP

hcl-bot · May 14, 2009, 1:01am

I have set up directory assistance to authenticate users in AD to access Domino application.

Following are the steps performed.

Created Directory assistance Database.

Enabled Directory Assistance in Server doc.

Created document in Directory assistance with the domain type as LDAP.

Restarted the server.

“Show xdir” shows the domain I have created in Directory assistance.

When I try to add a user in AD to a Database ACL, I’m unable to find the Directory assistance to select the name.

Could someone tell me how this directory will list to select (Search and add) AD users in the ACL.

As a work arond I’m able to create an Account in Local addressbook and populate that account in ACL to search and add names. It works fine. However the issue is that I have to create an account in every work station to do this.

hcl-bot · May 14, 2009, 1:06am

Subject: Account Document.

Create a LDAP account document, provide the LDAP server name, auth info, port info and locations where this doc can be used and now in the Address Look-up dialouge box select the LDAP account name and search for the users. This will work…

hcl-bot · May 14, 2009, 3:30am

Subject: DA-LDAP

Hi Phani,

I did the steps mentioned above in Local names.nsf earlier. This needs to be done on every work station and it works fine. Once I configured directory assistance, wouldn’t that display in the list for name look up.

For instance when I go to database ACL and try to add a user in AD, I would like to see the Directory Assistance and should be able to select the names.

hcl-bot · May 14, 2009, 9:18am

Subject: DA name picker

you’ll only get the browseable name picker with DA if you specify a pubnames based address book in directory assistance

LDAP DA entries will still work for nameresolution, but you wont see a picker

hcl-bot · May 14, 2009, 11:10pm

Subject: work around

Creating new Account in Local Address Book for LDAP search

Open Local Address Book.

Click on New > Account

Enter the required information in the new window.

Under Basics Tab, enter the following information

Account Name : Enter the account name of your choice. Eg : LDAP

Account Server Name: Enter the IP address or fully qualified name of AD server.

Login Name: Enter fully qualified user name in AD. Eg: CN=Administrator, DC=Users, DC=Sobis, DC=Com

Password: Enter the AD user password.

Find the below screen shot for example.

Click on Protocol Configuration tab.

Enter the following information.

Search Base: AD search base. Eg: DC=Sobis, DC=Com

Under advanced tab, enter port number as 389.

Click on Save and Close button.

Right click on a Database icon where user have manager access.

Click on Application > Access Control List

Click on Add.

Click on person icon in Add user window.

Under Directory field click on the drop down list to list the directories.

Select the account name you have created.

Enter the name of the person you are looking for and hit search.

Select the name and click on Add.

Click on OK to all the windows.