...
| Warning |
|---|
READ WELL: web apps shall not cache or log UH passwords. For security purposes special DNs will be disabled if necessary. |
| LDAP Environments | host | port | comments |
|---|
 LDAP, Production | ldap.hawaii.edu | 636 for LDAPS, 389 if using startTLS | cleartext or anonymous binds are rejected, a Special DN is required |
| LDAP, Test | ldap-test.its.hawaii.edu | 636 for LDAPS, 389 if using startTLS | cleartext or anonymous binds are rejected, a Special DN is required |
- Connecting to LDAP is referred to as binding.
- You cannot bind to LDAP anonymously, credentials are required.
- You must request a special DN in order to bind per UH Data Governance policies.
- Special DNs are only granted when CAS (the UH Web Login Service) will not suffice.
- Special DN requests are subject to E2.215 and may require a Data Governance approval.
- If you use persistent connections to LDAP, you should have code that detects broken connections and re-establish them.
Our UH LDAP service features three branches
...