Problems using ruby-ldap to connect with windows AD

dubstep · April 14, 2011, 7:56am

hi:
I am using ruby-ldap to connect with windows AD. but when I bind,it
alway gives me “Cann’t contact LDAP Server”. my code is:
require ‘rubygems’
require ‘ldap’
begin
ldap_host = ‘172.17.20.191’
ldap_port = 636
ldap_conn = LDAP::SSLConn.new(ldap_host,ldap_port)
puts “trace 2 ldap_conn: #{ldap_conn.class}”
ldap_conn.set_option( LDAP::LDAP_OPT_PROTOCOL_VERSION, 3 )
puts “trace 3 ldap_conn: #{ldap_conn.class}”
bind_dn = “cn=altirisadmin,ou=Golden-Altiris,dc=autonavi,dc=com”
password_dn = “Altirisadmin”
ldap_conn.bind(bind_dn,password_dn){ ldap_conn.perror(“bind”)}
puts “trace 4 ldap_conn: #{ldap_conn.class}”
rescue
puts “trace 5 oops, #{$!}”
end

I have alreay tried ldapsearch. it does work but ruby-ldap doesn’t.
my system is centos 5.4 x64. ruby is “ruby 1.8.7 (2011-02-18 patchlevel
334) [x86_64-linux]”. openldap was installed by yum and the version is
0.9.11.
I also tried to install openldap by downloadng source code and
compilering them. but it still gives me same answer.

cooker_bj · April 14, 2011, 4:53pm

I have figured out the problem. MY windows AD is listening on 389, not
on 636.
ldapsearch command works only when I don’t put -p in the command line.
sorry to bother you all

cooker_bj · April 14, 2011, 8:24pm

Is 636 a standard for OpenLDAP? I’m so used to AD that I didn’t think
that
it would be anything else…

-Nick K.

cooker_bj · April 14, 2011, 8:34pm

On Thu, Apr 14, 2011 at 8:20 PM, Nick K. [email protected] wrote:

Is 636 a standard for OpenLDAP? I’m so used to AD that I didn’t think that
it would be anything else…

According to IANA http://www.iana.org/assignments/port-numbers:

ldaps 636/tcp ldap protocol over TLS/SSL (was sldap)
ldaps 636/udp ldap protocol over TLS/SSL (was sldap)

–
Phillip G.

Though the folk I have met,
(Ah, how soon!) they forget
When I’ve moved on to some other place,
There may be one or two,
When I’ve played and passed through,
Who’ll remember my song or my face.