Novell Home

My Favorites

Close

Please to see your favorites.

Novell LDAP Frequently Asked Questions (FAQ)

(Last modified: 07Jul2005)

This document (10062287) is provided subject to the disclaimer at the end of this document.

goal

Novell LDAP Frequently Asked Questions (FAQ)

fact

Novell Lightweight Directory Access Protocol

NLDAP

fix

NOTE: *****This document provides a list of references to common LDAP problems and questions relating to general configuration.  It does not focus on specific LDAP applications, of which there are too many to reference here.*****
Summary:
1)  What is LDAP?
2)  How do I (re)install and configure LDAP?
3)  How do I trace LDAP activity to a file?
4)  What is SSL and how does LDAP use it?
5)  How do I configure LDAP for SSL?
6)  Can I use the Netscape Address Book with Novell LDAP?
7)  How do I manage Novell LDAP?
8)  How do I install LDAP snapins inside ConsoleOne?
9)  How can I test to see whether LDAP is working properly?
10) What are Basic NLDAP troubleshooting steps?
11) What is an OID?
12) What does -610 mean inside DSTrace?
13) Where can I learn about LDAP standards?
14) Where can I find RFCs about LDAP?
15) What are the elements to an LDAP search request?
16) What types of tools can I use to test/use LDAP?
17) Where can I get a list of LDAP error codes?
18) How do I get Netscape to talk to LDAP for NDS?
19) How can I tune my LDAP server for better performance?
20) How do I configure contextless login to use LDAP?
21) Is LDAP case sensitive?
22) What ports does LDAP use?  Does this conflict with other products?
23) Can the Novell LDAP port be changed?
24) How does Novell LDAP handle referrals?
25) How do I import users into my NDS tree using LDAP?
26) Will Novell LDAP support LDIF files?
27) Can I use LDAP to import or export users from my NDS tree?
28) What is ICE?  How do I use ICE?
29) Will LDAP run on a NetWare 4.11 server?
30) How can I restrict anonymous access to my LDAP server?
31) What is a proxy user and why would I want one?
32) Does Novell provide an LDAP application for browsing entries, like a phone book or directory?
33) Does LDAP use catalog services?
34) How do I view or export LDAP schema using ldapsearch?
35) Can I index modification time stamps and search off of them with LDAP

symptom

1)  What is LDAP?

fix

See solution 10062288: "What is LDAP?" for information about LDAP's purpose, definition, function, and history.  Also included is information about LDAP operations and bind methods.

symptom

2)  How do I (re)install and configure LDAP?

fix

See solution 10054559 [no longer available]: Novell LDAP and SSL Reinstallation and Reconfiguration (All Platforms/Versions)

See solution 10017683: NLDAP Configuration - ( Quick Start )

See solution 10058071: How to re-install LDAP on a NetWare 5.1

See solution 10060250: How to reinstall LDAP services on servers running NDS eDirectory 8.5

See solution 10016004: How to reinstall LDAP services for NetWare 5

symptom

3)  How do I trace LDAP activity to a file?

fix

See solution 10062292: How do I trace LDAP activity to a screen or log file?

symptom

4)  What is SSL and how does LDAP use it?

fix

See solution 10062293: LDAP: Introduction to Security using SSL (Secure Sockets Layer)

symptom

5)  How do I configure LDAP for SSL?

fix

See solution 10023209: How to configure LDAP for SSL (Secure) Connections

See solution 10055199: How to configure Netscape Communicator 4.x to allow secure LDAP queries

symptom

6)  Can I use the Netscape Address book with Novell LDAP?

fix

See solution 10026625: How to configure Netscape Navigator 4.7 browser to query a LDAP server

symptom

7)  How do I manage Novell LDAP?

8)  How do I install LDAP snapins inside ConsoleOne?

fix

With NDS 7, LDAP is managed through snapins using NetWare Administrator

With NDS 8 and later, all LDAP administration is handled through snapins using ConsoleOne.

See eDirectory Product Documentation: http://www.novell.com/documentation/lg/ndsedir/taoenu/data/a2iii88.html

See solution 10062418: ConsoleOne snapins are missing

symptom

9)  How can I test to see whether LDAP is working properly?

10) What are basic NLDAP troubleshooting steps?

fix

See solution 10059954: How to test whether LDAP is working properly

symptom

11) What is an OID?

fix

See solution 10062300: What is an OID?

symptom

12) What does -610 mean inside LDAP DSTrace?

fix

See solution 10062144: Error: -610 in LDAP DSTrace

symptom

13) Where can I learn about LDAP standards?

14) Where can I find RFCs about LDAP?

fix

See solution 10062299: Locating LDAP Standards and RFCs

symptom

15) What are the elements to an LDAP search request?

fix

See solution 10062361: LDAP Search Concepts / Parameters / Elements

symptom

16) What types of tools can I use to test/use LDAP?

fix

See solution 10062377: What types of tools can I use to test/use LDAP?

symptom

17) Where can I get a list of LDAP error codes?

fix

See solution 10018955: LDAP Error Codes

See solution 10062366: ICE error codes

symptom

18) How do I get Netscape to talk to LDAP for NDS?

fix

See solution 10062377: What types of tools can I use to test/use LDAP?

See solution 10058069: Browser Search Strings For LDAP

symptom

19) How can I tune my LDAP server for better performance?

LDAP Performance Tuning

cause

LDAP performance can be impacted by the following items: memory management (cache settings), indexes, replica placement, and search limits.  The following documents discuss these items in depth.

fix

See solution 10060584 [no longer available]: Performance tuning for eDirectory 8.5 on Solaris.

See AppNote: How to Maintain Caching in eDirectory 8 and eDirectory 8.5; Posted  01 Apr 2001; http://support.novell.com/techcenter/articles/ana20010401.html

See AppNote: How to Configure and Optimize eDirectory LDAP Servers; Posted 01 Aug 2000;  http://support.novell.com/techcenter/articles/ana20000904.html

symptom

20) How do I configure contextless login to use LDAP?

fix

See Novell Cool Solutions: http://www.novell.com/coolsolutions/zenworks/downloadables.html#dirXperts and http://www.novell.com/coolsolutions/nds/qna/contextless_login_questions.html

See solution 10061164: LDAP Contextless login fails

symptom

21) Is LDAP case sensitive?

fix

Changing the case of an attribute name or an object class name doesn't matter.  We could use telephonenumber and telephoneNumber interchangeably, for example.
The case in an attribute value usually doesn't matter either.  Most attributes have a string syntax that ignores case for the purpose of comparisons.  For instance, all of the attributes in a fresh install of NDS ignore case.  However, some third-party applications that require you to extend the schema, or extend the schema themselves, sometimes use case-sensitive string syntaxes.  Examples of attributes where case might matter could include ID strings, passwords, and UNIX file paths.

symptom

22) What ports does LDAP use?

23) Can the Novell LDAP port be changed?

fix

See solution  10056600: What ports does NDS use?

See solution  10057778: How to change the port number for LDAP

symptom

24) How does Novell LDAP handle referrals?

fix

See solution  10061859: Handling of LDAP Referrals

symptom

25) How do I import users into my NDS tree using LDAP?

26) Will Novell LDAP support LDIF files?

27) Can I use LDAP to import or export users from my NDS tree?

28) What is ICE?  How do I use ICE?

fix

See AppNote: Using the Novell Import Convert Export Utility; Posted 01 Oct 2000; http://support.novell.com/techcenter/articles/ana20001002.html

symptom

29) Will LDAP run on a NetWare 4.11 server?

fix

Novell does not support LDAP over an IPX/SPX protocol stack.  Although LDAP is designed to work over an connection-oriented protocol, in practice, practically all implementations use TCP as the transport for LDAP messages.

See solution 10054431: Can I use LDAP with a pure NetWare 4.11 tree?

See solution 10054814: Is NLDAP available for NW 4.1x?

symptom

30) How can I restrict anonymous access to my LDAP server?

31) What is a proxy user and why would I want one?

fix

See solution 10062428: What is an LDAP proxy user?

See solution 10061098: Is it possible to completely restrict the LDAP proxy user from browsing any objects in the tree?

symptom

32) Does Novell provide an LDAP application for browsing entries, like a phone book or directory?

fix

See solution 10062367: What is eGuide?

symptom

33) Does LDAP use catalog services?

fix

LDAP used catalog services in earlier versions of NDS.  However, newer versions of NDS provide more robust, scalable methods of indexing information needed by an LDAP server.  This can now be handled through use of indexes and filtered replicas.  For more information on these items, see the question above regarding performance tuning for an LDAP server.  For information specific to catalog services, see solution 10018751: General Catalog Services Information.

symptom

34) How do I view or export LDAP schema using ldapsearch?

fix

See solution 10062378: How do I export the LDAP Schema using ldapsearch?

symptom

35) Can I index modification time stamps and search off of them with LDAP

fix

Currently, eDirectory does not provide a mechanism to index modification time stamps of a value. Value timestamps are used as the ID for the value. It is a hard coded defintion and can not be applied to standard indexing operations.

disclaimer

The Origin of this information may be internal or external to Novell. Novell makes all reasonable efforts to verify this information. However, the information provided in this document is for your information only. Novell makes no explicit or implied claims to the validity of this information.
Any trademarks referenced in this document are the property of their respective owners. Consult your product manuals for complete trademark information.

  • Document ID:
  • 10062287
  • Solution ID: NOVL47454
  • Creation Date: 07May2001
  • Modified Date: 07Jul2005
    • NovellBeta

      Connectivity Products

      Groupware

      Management Products

      NetWare

      eDirectory

      Other

Did this document solve your problem? Provide Feedback