...

...

Accessing LDAP

LDAP Environments	host	port	comments

LDAP, Production

ldap.hawaii.edu

636 for LDAPS, 389 if using startTLS

cleartext or anonymous binds are rejected, a Special DN is required

LDAP, Test

ldap-test.its.hawaii.edu

636 for LDAPS, 389 if using startTLS

cleartext or anonymous binds are rejected, a Special DN is required

• Connecting to LDAP is referred to as binding.

• You cannot bind to LDAP anonymously, credentials are required.

  • You must request a special DN in order to bind per UH Data Governance policies.

  • Special DNs are only granted when CAS (the UH Web Login Service) will not suffice.

  • Special DN requests are subject to E2.215 and may require a Data Governance approval.

• If you use persistent connections to LDAP, you should have code that detects broken connections and re-establish establishes them.

Our UH LDAP service features three branches

...

• ou=people,dc=hawaii,dc=edu

  • All people who have received a UH Number, meaning anyone who was, is or will shortly be a student, faculty, staff or guest at UH.

  • See also UH Role Assignments and Transitions

  • The UH Online Directory relies on this branch for providing contact information for people.

• ou=misc,dc=hawaii,dc=edu

  • Departmental/ Group UH Usernames

  • Visiting individuals who have have been granted the ability to access the Internet from our campus(es).

• ou=dept_listings,dc=hawaii,dc=edu

  • Department listings, primarily used for printing or providing PDFs of the University Phone Directory.

Additional LDAP Info

• LDAP Specifications for Misc Usernames

• LDAP Specifications for VIA Accounts https://uhawaii.atlassian.net/wiki/pages/createpage.action?spaceKey=UIAAMUO&title=LDAP%20Specifications%20for%20Misc%20Usernames

• https://uhawaii.atlassian.net/wiki/pages/createpage.action?spaceKey=UIAAMUO&title=LDAP%20Specifications%20for%20VIA%20Accounts

Data Element Dictionary

This dictionary provides a detailed explanation of each of the LDAP attributes.

...