none
LDAP adapter for BizTalk Server RRS feed

  • Question

  • I m trying to find an LDAP adapter to integrate with  Active Directory  Is there any ready made adapter available. or I should build it

    Monday, December 8, 2008 6:15 AM

Answers

  • The trickiest thing about this is that you want to implement this as securely as possible. There are built-in import/export command-line tools like ldifde and csvde that give you import and export capabilities from AD. You could run csvde to output to a network share and then use the FILE adapter to pull it in. If you must have the information in LDAP format, you can use ldifde. I am not sure what schema to use for parsing the LDAP format. Here are links on csvde (http://www.computerperformance.co.uk/Logon/Logon_CSVDE.htm) and ldifde (http://www.computerperformance.co.uk/Logon/Logon_LDIF.htm). I think this approach over a secured network share seems like the most secure one.

     

    Also, if you need it to run regularly, just create the call to one of these tools as a scheduled task.

     

    I also saw that there is a sample of exposing the AD data as a web service - see http://msdn.microsoft.com/en-us/library/aa202883(office.11).aspx. Most organizations will not allow IIS on the domain controller like this due to good security concerns.

     

    Thanks,

    • Marked as answer by edhickey Monday, December 22, 2008 10:55 PM
    Tuesday, December 9, 2008 9:26 AM
    Moderator

All replies

  • How do you want to use LDAP? Are you trying to send/receive data from your LDAP directory or are you trying to use it for authentication as part of some other adapter? AD does have some compliance with LDAP - see the following article with a Word document whitepaper for more information: http://www.microsoft.com/windowsserver2003/techinfo/overview/ldapcomp.mspx.

     

    Thanks,

    Monday, December 8, 2008 4:51 PM
    Moderator
  • I need to Sync the data from AD to another one system. For the purpose I plan to have BizTalk for transmitting data from AD . So I am looking for option how to do the integration.

    Requirement is I need to pull data from AD

    Thanks 



    Tuesday, December 9, 2008 3:51 AM
  • The trickiest thing about this is that you want to implement this as securely as possible. There are built-in import/export command-line tools like ldifde and csvde that give you import and export capabilities from AD. You could run csvde to output to a network share and then use the FILE adapter to pull it in. If you must have the information in LDAP format, you can use ldifde. I am not sure what schema to use for parsing the LDAP format. Here are links on csvde (http://www.computerperformance.co.uk/Logon/Logon_CSVDE.htm) and ldifde (http://www.computerperformance.co.uk/Logon/Logon_LDIF.htm). I think this approach over a secured network share seems like the most secure one.

     

    Also, if you need it to run regularly, just create the call to one of these tools as a scheduled task.

     

    I also saw that there is a sample of exposing the AD data as a web service - see http://msdn.microsoft.com/en-us/library/aa202883(office.11).aspx. Most organizations will not allow IIS on the domain controller like this due to good security concerns.

     

    Thanks,

    • Marked as answer by edhickey Monday, December 22, 2008 10:55 PM
    Tuesday, December 9, 2008 9:26 AM
    Moderator