I am trying to query an LDAP server (Active directory) over ldaps. The problem is that the only ports i have available (389 and 636) are UDP ports. TCP is not allowed by the firewall rules (which i don't understand myself, so don't bother asking:) )
I am not having much luck however.
Running the command
ldapsearch -H ldaps://cmpname.dk:636 -b "ou=CmpName,dc=cmpname,dc=dk" -D "cn=devldap,ou=Service,ou=Misc acconts,ou=CmpName,dc=cmpname,dc=dk" -w "password123" -v
Gives the message:
ldap_initialize( ldaps://cmpname.dk:636/??base )
after which it hangs for a while and then returns
ldap_sasl_bind(SIMPLE): Can't contact LDAP server (-1)
Can i assume that this is because ldapsearch only attempts to contact via tcp? Can i make ldapsearch contact the UDP port somehow?
Or is the error something else entirely?
Basically: Help 🙂
Best Answer
AD only supports LDAP over UDP in a very limited way. Not much more than being able to query authentication methods available.
-