Prerequisites for the Nodinite LDAP Web API

This page describes the prerequisites for successfully installing and hosting the latest version of the Nodinite LDAP Web API.

Instances of the Nodinite LDAP Web API must be installed on-premise on a Windows Server with IIS, or in the cloud/off-site if the target server is placed on a network with access to the LDAP catalog. You can also host the LDAP Web API inside your App Service Environment.

Software Requirements

The Nodinite LDAP Web API is installed in either the IIS or in your App Service Environment

Versions 3.0.0 -> 3.0.5 make use of the ASP.NET 7 Versions to 2.0.0 - 2.0.1 make use of the ASP.NET 3.1 Versions prior to 2.0.0 make use of the ASP.NET 2.0.6

You must use a modern browser like Edge or Chrome. Add /swagger last in the address to test it out.

You must have ASP.NET Core installed.

Important

You must download and install the ASP.NET hosting bundle.

• Host ASP.NET Core on Windows with IIS
  • ASP.NET Core 8.0 Runtime (v8.0.0) - Windows Hosting Bundle Installer!

You should review the Disable PAC Verification user guide and consider the changes required for better performance

IIS

If you host the Nodinite LDAP Web API in IIS, then you must install the following components:

Warning

A reboot after installation is required.

App Service Environment (ASE)

You can host the Nodinite LDAP Web API in an Azure App Service Environment (ASE). The App Service is using a Managed Identity to authenticate with the settings (you should store passwords in Key Vault).

• The App Service requires a Role assigned the Azure Key Vault Administrator permission.
• The App Service requires an App Configuration container to store the settings in use.

Supported Versions

Cloud technologies are evolving fast and as Microsoft deprecates older versions of their Services and APIs now and then. Nodinite will always support the APIs supported by Microsoft. This means you need to update the Nodinite LDAP Web API from time to time.

Make sure to subscribe to the Release Notes

What rights does the client for Nodinite LDAP Web API require?

The code, or the system integration platform uses an identifier (a Guid) to identify which connection to use, executing a LDAP statement. The API is not secured in any way but you should use HTTPS and you can further restrict access by white-listing IP addresses.

What Access Rights Does the Nodinite LDAP Web API Require?

• The account being used for the LDAP queries must have proper read/write access to targeted objects in the LDAP/AD catalog.
• The server must be domain joined, and you must target Active Directory, if you do not provide explicit connection information in the adapter.

What Firewall settings are required for the Nodinite LDAP WEB API?

For a complete list of ports, review the TCP and UDP ports user guide. The following ports must be always be allowed:

The Nodinite LDAP Web API has both inbound and outbound communication:

1. Between the Client/Consumer and the Nodinite LDAP Web API
2. Between the Nodinite LDAP Web API and the LDAP Catalog Service (Active Directory, Novell, NIS, DIRX, ...)

1. Between the Client/Consumer and the Nodinite LDAP Web API

2. Between the Azure Logic Apps Logging and Monitoring agent and Azure Management API

Frequently asked questions

Additional solutions to common problems and the FAQ for the Nodinite LDAP Web API exist in the Troubleshooting user guide.

Next Step

Install the Nodinite LDAP Web API

Related

• BizTalk LDAP Adapter