跳转至

LDAP

The LDAP connector is a Palantir-provided driver for LDAP.

To create a new LDAP source, follow the standard setup flow for Palantir-provided drivers, then use the sections below for LDAP-specific configuration and networking. For the complete property reference, see the official LDAP driver documentation ↗.

Configuration

The properties below are mandatory or recommended.

Property Required? Description Default
Server Mandatory Specifies the domain name or IP address of the LDAP server. This property is required to establish a connection and does not need to include the LDAP:\\ prefix, only the server’s domain name or IP address. {serverAddress}
UseSSL Mandatory Specifies whether SSL is used to secure the connection to the LDAP server. Enabling this property ensures that communication between the client and server is encrypted. TRUE
BaseDN Recommended Specifies the base portion of the distinguished name (DN) to limit LDAP queries to a specific subtree within the directory. Using a base DN helps narrow the search scope and improve query performance, especially on large LDAP servers.
Password Recommended Specifies the password associated with the distinguished name (DN) of the user account used for authentication with the LDAP server. This property is required when the server enforces authentication.
Port Recommended Specifies the port number on which the LDAP server is running. 636
User Recommended Specifies the distinguished name (DN) of the user account to be used for authentication with the LDAP server. This property is required when the server enforces authentication.

Networking

The table below lists the domains that the source needs to be able to access in order to successfully run.

For each domain, add a corresponding egress policy. If the source is hosted on-premises and not directly reachable from Foundry, use an agent proxy egress policy instead; the agent host itself must also be able to reach the listed domains. See using an agent as a proxy for details.

Domain Required
\:\ Always. Server and Port connection properties (default Port=636)

中文翻译

LDAP

LDAP连接器是Palantir提供的用于LDAP的驱动程序

要创建新的LDAP数据源,请遵循Palantir提供驱动程序的标准设置流程,然后使用以下各节进行LDAP特定的配置和网络设置。有关完整的属性参考,请参阅官方LDAP驱动程序文档 ↗

配置

以下属性为必填或推荐项。

属性 是否必填 描述 默认值
Server 必填 指定LDAP服务器的域名或IP地址。此属性为建立连接所必需,无需包含LDAP:\\前缀,只需提供服务器的域名或IP地址。 {serverAddress}
UseSSL 必填 指定是否使用SSL来保护与LDAP服务器的连接。启用此属性可确保客户端与服务器之间的通信经过加密。 TRUE
BaseDN 推荐 指定可分辨名称(DN)的基础部分,以将LDAP查询限制在目录中的特定子树内。使用基础DN有助于缩小搜索范围并提高查询性能,尤其是在大型LDAP服务器上。
Password 推荐 指定用于LDAP服务器认证的用户账户可分辨名称(DN)对应的密码。当服务器强制执行认证时,此属性为必填项。
Port 推荐 指定LDAP服务器运行的端口号。 636
User 推荐 指定用于LDAP服务器认证的用户账户的可分辨名称(DN)。当服务器强制执行认证时,此属性为必填项。

网络设置

下表列出了数据源为成功运行而需要能够访问的域名。

对于每个域名,请添加相应的出站策略。如果数据源部署在本地且无法直接从Foundry访问,请改用代理出站策略;代理主机本身也必须能够访问所列出的域名。详情请参阅使用代理作为代理服务器

域名 必需条件
\<服务器>:\<端口> 始终必需。服务器和端口连接属性(默认端口=636