Sign inTry Free

Communication with LDAP Server

On this page

The LDAP tool’s communication with LDAP is equivalent to a single ldapsearch command call. For example,

ldapsearch -x -H ldap://35.158.138.5 -b "dc=memsql,dc=ldap,dc=testing" -D "CN=Peter Pan,CN=Users,DC=memsql,DC=ldap,DC=testing" -w MemSQL-active-directory-2020 "(&(objectClass=*))"

Where:

  • -H maps to --uris

  • -b maps to --search-base

  • -D maps to --bind-user

  • -w maps to --bind-credentials

  • (&(objectClass=*)) maps to --query-filter

Secure LDAP Server Connections

The LDAP tool secures LDAP server connections using the StartTLS extension to the LDAP protocol. StartTLS encrypts communication by using the TLS protocol. StartTLS can be enabled using the --start-tls option of the sdb-admin sync-ldap command. If this option is used, the path to the TLS root certificate authority file can be specified by the --ca-paths option. If no value is specified for the --ca-paths option, the default root certificate(s) will be used.

Last modified: November 5, 2024

Was this article helpful?

On this page

Was this article helpful?

Verification instructions

Note: You must install cosign to verify the authenticity of the SingleStore file.

Use the following steps to verify the authenticity of singlestoredb-server, singlestoredb-toolbox, singlestoredb-studio, and singlestore-client SingleStore files that have been downloaded.

You may perform the following steps on any computer that can run cosign, such as the main deployment host of the cluster.

  1. (Optional) Run the following command to view the associated signature files.

    curl undefined

  2. Download the signature file from the SingleStore release server.

    • Option 1: Click the Download Signature button next to the SingleStore file.

    • Option 2: Copy and paste the following URL into the address bar of your browser and save the signature file.

    • Option 3: Run the following command to download the signature file.

      curl -O undefined

  3. After the signature file has been downloaded, run the following command to verify the authenticity of the SingleStore file.

    echo -n undefined |
        cosign verify-blob --certificate-oidc-issuer https://oidc.eks.us-east-1.amazonaws.com/id/CCDCDBA1379A5596AB5B2E46DCA385BC \
          --certificate-identity https://kubernetes.io/namespaces/freya-production/serviceaccounts/job-worker \
          --bundle undefined \
          --new-bundle-format -
    Verified OK