Hello friend!
The beta release of Open iT version 10.1 is now available!
Try it out and help us enhance your Open iT experience. Contact support@openit.com to get started.
#
Configuring LDAP Collector
The Open iT LDAPCollector collects Active Directory information and sends them over to the server. This allows the server installation in the cloud to integrate the Active Directory to their reports.
#
Configuring LDAP Settings
Open
ldapcollector.xml
located atC:\Program Files\OpeniT\Core\Configuration\Components
.Update the following objects under the ldap-settings node:
url
LDAP://HostName
or
LDAP://IPAddress
or
LDAP://HostName:[PortNumber]
or
LDAP://IPAddress:[PortNumber]
or
LDAP://HostName:[PortNumber]/[DistiguishedName]
or
LDAP://IPAddress:[PortNumber\]/[DistiguishedName]
Sample url values
filter
The default value is objectClass=User. Update the value by following either of the following format:
([attribute][operator][value])
or
([operator][filter1][filter2])
Sample filter Values
attribute
The default value is sAMAccountName,displayName,department,division,employeeType,l, mail,physicalDeliveryOfficeName,title. Update the attribute separated by comma.
attrib1,attrib2,...attribN
Sample attribute Values
The default value of page-size, 1000, is the recommended value not to overload the Active Directory server.
Save the file.
Open
ldapcollector.xml
located at/var/opt/openit/etc/Components
.Update the following objects under the ldap-settings node:
url
LDAP://HostName
or
LDAP://IPAddress
or
LDAP://HostName:[PortNumber]
or
LDAP://IPAddress:[PortNumber]
or
LDAP://HostName:[PortNumber]/[DistiguishedName]
or
LDAP://IPAddress:[PortNumber\]/[DistiguishedName]
The server hostname of IP address is required. The setup will use the default 289 if there is no provided port number.
Sample url values
filter
The default value is objectClass=User. Update the value by following either of the following format:
([attribute][operator][value])
or
([operator][filter1][filter2])
Sample filter Values
attribute
The default value is sAMAccountName,displayName,department,division,employeeType,l, mail,physicalDeliveryOfficeName,title. Update the attribute separated by comma.
attrib1,attrib2,...attribN
Sample attribute Values
The default value of page-size, 1000, is the recommended value not to overload the Active Directory server.
Save the file.
#
Configuring LDAP Crendential File
The configuration requires a user credential in the ldap_auth
file if the current user does not have access to the Active Directory.
Open the
ldap_auth
file located atC:\Program Files\OpeniT\Core\Configuration\
.Provide an existing username and password from the Active Directory with the following format:
svg\jsmith=jsmith_password
or
jsmith@domainName.com=jsmith_password
Save the file.
Open the
ldap_auth
file located at/var/opt/openit/etc
.Provide an existing username and password from the Active Directory with the following format:
svg\jsmith=jsmith_password
or
jsmith@domainName.com=jsmith_password
Save the file.
#
Configuring the Collection of LDAP data
Open
collect_ldap.oconf
located atC:\Program Files\OpeniT\Core\Configuration\scheduler
.Locate and set collect_ldap.active to true.
collect_ldap.oconf1|root 2|{ 3| scheduler 4| { 5| jobs 6| { 7| collect_ldap 8| { ... 16| active 17| { 18| type=bool 19| value=true 20| } ...
Save the file.
Open
collect_ldap.oconf
located at/var/opt/openit/etc/scheduler
.Locate and set collect_ldap.active to true.
collect_ldap.oconf1|root 2|{ 3| scheduler 4| { 5| jobs 6| { 7| collect_ldap 8| { ... 16| active 17| { 18| type=bool 19| value=true 20| } ...
Save the file.
#
Verifying LDAP Collector Configuration
Follow these steps to manually check if the configuration works:
Run command prompt as Administrator.
Go to
C:\Program Files\OpeniT\Core\bin
and run:openit_confbuilder --client
Run the LDAP collector binary:
openit_ldapcollector
Ensure that there is no error encountered upon running the command.
Check if there is a
C:\Program Files\OpeniT\Core\Log\temp\LdapCollector
directory and if it contains a file calledldap_data.tsv
.
Run command prompt as Administrator.
Go to
/opt/openit/bin
and run:openit_confbuilder --client
Run the LDAP collector binary:
openit_ldapcollector
Ensure that there is no error encountered upon running the command.
Check if there is a
/var/opt/openit/temp/LdapCollector
directory and if it contains a file calledldap_data.tsv
.