LDAP¶
The LDAP connector is a Palantir-provided driver for LDAP.
To create a new LDAP source, follow the standard setup flow for Palantir-provided drivers, then use the sections below for LDAP-specific configuration and networking. For the complete property reference, see the official LDAP driver documentation ↗.
Configuration¶
The properties below are mandatory or recommended.
| Property | Required? | Description | Default |
|---|---|---|---|
Server ↗ |
Mandatory | Specifies the domain name or IP address of the LDAP server. This property is required to establish a connection and does not need to include the LDAP:\\ prefix, only the server’s domain name or IP address. | {serverAddress} |
UseSSL ↗ |
Mandatory | Specifies whether SSL is used to secure the connection to the LDAP server. Enabling this property ensures that communication between the client and server is encrypted. | TRUE |
BaseDN ↗ |
Recommended | Specifies the base portion of the distinguished name (DN) to limit LDAP queries to a specific subtree within the directory. Using a base DN helps narrow the search scope and improve query performance, especially on large LDAP servers. | — |
Password ↗ |
Recommended | Specifies the password associated with the distinguished name (DN) of the user account used for authentication with the LDAP server. This property is required when the server enforces authentication. | — |
Port ↗ |
Recommended | Specifies the port number on which the LDAP server is running. | 636 |
User ↗ |
Recommended | Specifies the distinguished name (DN) of the user account to be used for authentication with the LDAP server. This property is required when the server enforces authentication. | — |
Networking¶
The table below lists the domains that the source needs to be able to access in order to successfully run.
For each domain, add a corresponding egress policy. If the source is hosted on-premises and not directly reachable from Foundry, use an agent proxy egress policy instead; the agent host itself must also be able to reach the listed domains. See using an agent as a proxy for details.
| Domain | Required |
|---|---|
| \ |
Always. Server and Port connection properties (default Port=636) |
中文翻译¶
LDAP¶
LDAP连接器是Palantir提供的用于LDAP的驱动程序。
要创建新的LDAP数据源,请遵循Palantir提供驱动程序的标准设置流程,然后使用以下各节进行LDAP特定的配置和网络设置。有关完整的属性参考,请参阅官方LDAP驱动程序文档 ↗。
配置¶
以下属性为必填或推荐项。
| 属性 | 是否必填 | 描述 | 默认值 |
|---|---|---|---|
Server ↗ |
必填 | 指定LDAP服务器的域名或IP地址。此属性为建立连接所必需,无需包含LDAP:\\前缀,只需提供服务器的域名或IP地址。 | {serverAddress} |
UseSSL ↗ |
必填 | 指定是否使用SSL来保护与LDAP服务器的连接。启用此属性可确保客户端与服务器之间的通信经过加密。 | TRUE |
BaseDN ↗ |
推荐 | 指定可分辨名称(DN)的基础部分,以将LDAP查询限制在目录中的特定子树内。使用基础DN有助于缩小搜索范围并提高查询性能,尤其是在大型LDAP服务器上。 | — |
Password ↗ |
推荐 | 指定用于LDAP服务器认证的用户账户可分辨名称(DN)对应的密码。当服务器强制执行认证时,此属性为必填项。 | — |
Port ↗ |
推荐 | 指定LDAP服务器运行的端口号。 | 636 |
User ↗ |
推荐 | 指定用于LDAP服务器认证的用户账户的可分辨名称(DN)。当服务器强制执行认证时,此属性为必填项。 | — |
网络设置¶
下表列出了数据源为成功运行而需要能够访问的域名。
对于每个域名,请添加相应的出站策略。如果数据源部署在本地且无法直接从Foundry访问,请改用代理出站策略;代理主机本身也必须能够访问所列出的域名。详情请参阅使用代理作为代理服务器。
| 域名 | 必需条件 |
|---|---|
| \<服务器>:\<端口> | 始终必需。服务器和端口连接属性(默认端口=636) |