CPUG

The Check Point User Group

A Resource For The Check Point Community.  Fast.  Useful.  Independent.

1. Come to CPUG CON 2008 EUROPE in Switzerland on September 8th - 9th!
    Two days full of technical content for Check Point administrators in the beautiful Swiss Alps!
    We already have sign-ups from twelve different countries!
2. CCSA/CCSE One-Week Dual-Certification Training Course with CPUG in San Francisco!
    Courses Starting 7/14, 8/25, 10/6, 11/3, 12/8, (2009) 1/19, 2/9, 3/9, 4/6, 5/4, 6/8.
3. Corrent S3500 SecureXL Turbocards For Sale - Last Six Remaining - Get Your Spares!
4. Join Us On LinkedIn - We now have a CPUG group.


Go Back   CPUG: The Check Point User Group > Check Point Firewall-1/VPN-1 And Related Products > Authentication
Reload this Page How do I test an Windows LDAP Server?
Register FAQ Members List Calendar Search Today's Posts Mark Forums Read

Reply
 
LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old 2006-11-01
EdinburghKev EdinburghKev is offline
Member
  
Join Date: 2006-09-26
Location: Scotland
Posts: 32
Rep Power: 0
EdinburghKev has an average reputation (10+)
Default How do I test an Windows LDAP Server?
I have been asked to connect from my firewall and check that a new LDAP server can be connected to on port 636.

Can anyone tell me:

1. What di I need to access to the LDAP server (IP address, username/password etc)?
2. What simple command I can run to tell the LDAP server is working?

I can connect to this and the othe LDAP servers from the management module using SmartDashboard and query the LDAP servers from the users tab but this test is not good enough I have been told.

Many thanks for your help.
Reply With Quote
  #2 (permalink)  
Old 2006-11-02
Yasushi Kono Yasushi Kono is offline
Senior Member
  
Join Date: 2006-10-03
Location: Offenbach/ Germany
Posts: 104
Rep Power: 2
Yasushi Kono has an average reputation (10+)
Default Re: How do I test an Windows LDAP Server?
Hello,

the main purpose of a Directory Server is holdig user information for authentication purposes. As far as you are able to retrieve User information which can be used for e.g. a Client Auth Rule in the security policy, LDAP integration is working and that is definitely enough!

As far as you are using SunONE Directory Server, you will be able to query this server by typing the following URL into a Browser software like Internet Explorer or Mozilla Firefox:

ldap://IP-ADDR:389/dc=Company,dc=com??sub?(objectclass=*)

Due to my experience, I know that it is not possible to query anonymously (=anonymous BIND) a Windows DC or a Novell eDirectory Server. But you could use Softerra LDAPBrowser which is free of charge.

Kind regards,
Yasushi
Reply With Quote
Reply

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are Off
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT -7. The time now is 17:27.

Contact Us - CPUG Home Page - Archive - Top

Powered by vBulletin® Version 3.7.2
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
LinkBacks Enabled by vBSEO 3.0.0