Reputation: 23123
I want to use an LDAP client here at work to talk to Active Directory. How can I discover on my own the IP I should be aiming at?
I know I could just ask, but that would involve bureaucratic entanglements.
Upvotes: 0
Views: 875
Answers (3)
Reputation: 36701
Try ping or nslookup _ldap._tcp. with your AD Domain (e.g. _ldap._tcp.test.com) in a console (cmd.exe) - this should give you the AD Server IP.
_ldap._tcp.*
Is a general SRV entry made by your active directory server for locating LDAP (AD) servers in your domain. Your domain itself should match your Windows Login Domain. If this isn't the case right-click on your "My Computer" Icon on your Desktop or in your Explorer and click Properties. In the System Properties there is a Tab showing your Computer Name and its Network ID, which also contains its DOMAIN/WORKGROUP name. This is what you should append to the resource locator above.
Btw. how did you get access to that machine without your Domain Login? :)
Edit: The FOOAD name would be the "old" Domain name, and foo.something.something the new DNS based name - this should give you the server address. Also try the suggestion by Almond, which is more specific regarding the requested service.
Upvotes: 2
Reputation: 1603
Open command prompt if you can, type ipconfig /all look at the entry for primary dns suffix. This mostly likely the domain that your workstation is on. Another potenial way is to log out and look at the domain listed below username/password in the login window.
Once you have your domain name open command prompt again and type the following:
nslookup _LDAP._TCP.dc._msdcs.mydomain
this will give you a ip address for the domain controller.
Upvotes: 0
Reputation: 7643
I believe that on an AD network that is DNS enabled the root zone points at all the AD servers. So, for instance, if your official AD username is [email protected], doing an nslookup of company.ad from cmd.exe will tell you all the IPs of the controllers (and hence all the IPs you could use for LDAP).
This is edited to change the zone name, but one my work system:
C:\Documents and Settings\jj33>nslookup companyname.ad
Server: palpatine.companyname.ad
Address: 172.19.1.3
Name: companyname.ad
Addresses: 172.16.3.2, 172.16.6.2, 172.19.1.3, 172.16.7.9
172.19.1.14, 172.19.1.11
C:\Documents and Settings\jj33>
On my (XP) machine, this shows me my AD domain:
- Right click "My Computer"
- Select "Computer Name" tab
- See "Domain:" field
Upvotes: 0
Related Questions
- How to tell if ActiveDirectory connection is using LDAP?
- LDAP query logged in users via IP
- User information by IP address from Active Directory by LDAP query?
- LDAP Connecting with IP address and Port Number
- LDAP Active Directory path
- How to know that Active Directory exists with only ip address?
- LDAP query using IP Address attribute
- How can I find out which server hosts LDAP on my windows domain?
- Inferring LDAP address from NT domain name
- How can you find available ldap servers from a computer in the same network, but different domain?