The main idea of this playground is to provide an easy to use LDAP - Lightweight Directory Access Protocol server to simply play around with the technology.
The Apache Directory™ Project - We strive to increase LDAP awareness, comfort and adoption to bring forth what we call the Modern LDAP Renaissance.
This playground requires a ready to use Docker Compose environment.
For the impatient...
Grab your copy of the playground datenkollektiv/ldap-playground...
up.sh to build and up the environment.
Note: You'll need to prepare a keystore. Check the chapter Prepare a keystore below in case you need some guidance.
Your LDAP server is ready to go - check out the local server at
The main components you'll probably want to adapt and fine-tune your personal LDAP playground are:
- The Docker Compose configuration
- the sample data
Prepare a keystore
The setup requires a keystore to be present in
docker/etc for TLS.
changeitas password or update
The keystore should be named
apacheds.jks and can be generated like follows (You'll need the Java
keytool -genkeypair -alias apacheds -keyalg RSA -validity 7 -keystore apacheds.jks
Copy the generated keystore into the directory
The configuration knobs
If unchanged the LDAP server will be available via
ldap://127.0.0.1:389 or simply
ldaps:// from the Docker host.
Check the port mappings in the
docker-compose.yaml in case you don't want to use the default ports.
The initial data will be inserted from
So this is the natural place in case you want to fiddle with the initial data set.
Note: You can verify the installation from the host system with
ldapsearch -H ldap:// -x -s base -b "" -LLL "+"
CLI example with
ldapmodify -H ldap:// -D "uid=admin,ou=system" -w apacheds -a -f ldif-examples/users.ldif
Note: The preconfigured admin password is
apachedsand can be changed in the
docker-compose.yamlif need be.
CLI example with
uid=admin,ou=system and query the LDAP tree
ldapsearch -H ldap:// -D "uid=admin,ou=system" -w apacheds -b "ou=users,dc=example,dc=com" ... # search result search: 2 result: 0 Success # numResponses: 3 # numEntries: 2
Connect with Apache Directory Studio™
Apache Directory Studio™ - The Eclipse-based LDAP browser and directory client
Download Apache Directory Studio from Apache Directory - Downloads
Create (and check) the connection as shown in the screenshots below.
New LDAP Connection - Network Parameter
New LDAP Connection - Authentication
If you made it so far - take the next step and clone the playground datenkollektiv/ldap-playground to get your hands dirty...
Acknowledgment - The docker-compose setup is heavily based on the Docker image provided by TremoloSecurity/apacheds