About the LDAP Connector

The LDAP connector makes it possible to crawl different kind of entities from LDAP software such as:

• Active Directory A directory service for Windows domain networks. A hierarchical structure that stores information about objects on the network. Used to manage permissions and control access to critical network resources.
• OpenLDAP
• OpenDJ
• ViewDS

The connector has the following capabilities:

Features

The connector has the following capabilities and features:

• The connector supports querying and indexing from any arbitrary base DN and specifying which attributes to return.
• Any text, number, and date attributes can be returned as metadata Provides context with details such as the source, type, owner, and relationships to other data sets. Metadata provides details around the item being crawled by Connectivity Hub.. 
• Multi-value attributes are supported.
• GUID, SID and UUID data types can be used as record identifiers (such as entryUUID, ObjectSID, etc...) 
• Connect either anonymously or via the SIMPLE BIND protocol
• LDAPS connections are supported

Security

The connector respects the security used by the LDAP application.

Limitations

• LDAP over TLS (aka STARTTLS) is not supported

• Byte arrays and other binary types are not supported as metadata to return, but can be supported for record identifiers (such as entryUUID, ObjectSID, etc...) 
• Deletes can be reported only via incrementals if the LDAP provider supports the tombstone feature.
  
  • If your provider does not, you must schedule full crawls periodically to identify deletes