Content Comparison

The core UH LDAP servers are ldap.hawaii.edu (recommended) and ldap1.its.hawaii.edu (legacy, slated for retirement) and are based on the uhEduPerson schema.

Warning

title	The "legacy" LDAP (ldap1.its.hawaii.edu) will be retired end of calendar year 2014

New services should utilize our Next Generation LDAP (see below).

Info

title	Next General Generation LDAP

The next generation of our LDAP service is now in Production. Please see below for details:

Next Generation LDAP

...

LDAP Generation	host	port	comments
Next Generation LDAP, Production	ldap.hawaii.edu	389	only for STARTTLS, clear binds are rejected, a Special DN is required
Next Generation LDAP, Test	ldap-test.its.hawaii.edu	389	only for STARTTLS, clear binds are rejected, a Special DN is required
Legacy, Slated for Retirement	ldap1.its.hawaii.edu	389	data goes over cleartext, do not provide any passwords when you connect
Legacy, Slated for Retirement	ldap1.its.hawaii.edu	636	LDAPS, encrypted, always use this when providing a password

Connecting to LDAP is referred to as binding.
You cannot bind to LDAP anonymously, credentials are required for the Next Generation LDAP.
- You must request a special DN in order to bind per UH Data Governance policies.
- Special DNs are only granted when CAS (the Web Login Service) will not suffice.
- Special DN requests are subject to E2.215 and may require a Data Governance approval.

...

Version	Old Version 29	New Version 30
Changes made by	mhodges	mhodges
Saved on	Mar 12, 2014	Mar 12, 2014

Versions Compared

Key