Active Directory uses 389 - LDAP 3268 - Global Catalog
636 - LDAPS (if a cert is installed) 3269 - GC LDAPS (again if a cert is installed) While the SRV records and certain registry keys imply the ports can be changed, they actually cannot. ADAM on the other hand (Active Directory Application Mode) can have the ports (LDAP and LDAPS, there is no GC for ADAM) changed but ADAM doesn't register SRV records, it instead uses Service Connection Point (SCP) objects that it registers in the Active Directory that the machine is a member of. There is nothing preventing someone from registering and consequently using those SRV records for ADAM though. If you really want to duplicate what the clients are doing, you will want to get ANY DC that you can find, then hit it with a UDP LDAP request off the rootdse asking for NETLOGON. That will return a packet that tells you the Site of the DC you are talking to as well as your client's site if it can ascertain what it is from the IP. I.E. The IP has to be in the space defined in the Subnets in AD. Then once you have the site of your client, you can ask DNS for the specific SRV record for the domain you need for the site you are in. That way you can use the DC that is "closest" to you. If you are using a Windows machine, you can simply use the Windows DC location API calls to do this of course. joe -- O'Reilly Active Directory Third Edition - http://www.joeware.net/win/ad3e.htm -----Original Message----- From: Thts me [mailto:[EMAIL PROTECTED] Sent: Friday, July 11, 2008 2:54 AM To: ldap@umich.edu Subject: [ldap] Re: find Active directory server location Thanks. That helps! Also how do I find out the port of the Active directory server? Ritchie Young-2 wrote: > > The name of the AD domain typically resolves back to a AD domain > controller. > So you could just use that. So if you're on a Windows workstation > that's a member of the domain, try entering: > > ping %USERDNSDOMAIN% > > at the command prompt. > > Cheers > Ritchie > > On Fri, Jul 11, 2008 at 2:27 PM, Thts me <[EMAIL PROTECTED]> wrote: > >> >> hi, >> >> My Active directory server is located somewhere in my network. Is >> there a way to find its location (IP address) & port ? >> >> Thanks in advance >> -- >> View this message in context: >> http://www.nabble.com/find-Active-directory-server-location-tp1839751 >> 5p18397515.html Sent from the LDAP UMIch List2 mailing list archive >> at Nabble.com. >> >> >> --- >> You are currently subscribed to ldap@umich.edu as: >> [EMAIL PROTECTED] To unsubscribe send email to >> [EMAIL PROTECTED] with the word UNSUBSCRIBE as the SUBJECT of the message. >> > > > > -- > Ritchie Young > Manager > 9 to 5 Magic (ABN: 11604904429) > P: 0412210415 F: (08) 94637895 > PO Box 516 Morley WA 6943 > http://rubysync.org > > > --- > You are currently subscribed to ldap@umich.edu as: [EMAIL PROTECTED] > To unsubscribe send email to [EMAIL PROTECTED] with the word > UNSUBSCRIBE as the SUBJECT of the message. > > -- View this message in context: http://www.nabble.com/find-Active-directory-server-location-tp18397515p18397 839.html Sent from the LDAP UMIch List2 mailing list archive at Nabble.com. --- You are currently subscribed to ldap@umich.edu as: [EMAIL PROTECTED] To unsubscribe send email to [EMAIL PROTECTED] with the word UNSUBSCRIBE as the SUBJECT of the message. --- You are currently subscribed to ldap@umich.edu as: [EMAIL PROTECTED] To unsubscribe send email to [EMAIL PROTECTED] with the word UNSUBSCRIBE as the SUBJECT of the message.
