-
Title
Testing LDAP connection outside the SMA -
Description
When setting up LDAP Authentication between a SMA (Systems Management Appliance) and an LDAP server, there may be connectivity issues.
-
Cause
There are a few ways to test LDAP server availability and it would be best to run these tests inside the same subnet as the SMA.
-Any failures with tests run outside of the same subnet as the SMA may indicate network port issues.
-Any failures with tests run inside the same subnet as the SMA may indicate LDAP server issues.
-
Resolution
The easiest tool to test an LDAP connection is telnet. Although it is not usually installed by default, the telnet client can be easily installed without the need for a reboot following this guide.
. Once telnet is installed, run this from a command prompt:
telnet server.domain.com 389 (636 if using secure LDAP) (substitute server.domain.com for the LDAP Server).
- If it connects, you will get a flashing cursor in the top left of the screen.
- If it does not connect, you will get a connection error.
You can get more in-depth information using the cmd line tool portqry. This is a Microsoft tool and it can be downloaded here.
Once portqry is installed, navigate to the install portqry directory from a command prompt and run this command:
portqry -n myserver -p udp -e 389 (636 if using secure LDAP) (substitute myserver for the name of the LDAP server).