ldap[s]://hostname[:port]/[base-dn][?[attributes]?[scope]?[filter]]
  • hostname: domain name or IP address of LDAP server (i.e. DC)
  • port: LDAP port (default 389)
  • base-dn: distinguished name of a directory entry used as the starting point of the search (search root); search at the root DN if none specified
  • attributes: attributes to be returned; all attributes are returned if none specified
  • scope: can be one of three values
    • base: default; retrieves information about the base-dn DN
    • one: retrieves info at one level below base-dn (base entry not included)
    • sub: retrieves info at all levels below base-dn (base entry included)
  • LDAP filter: used to match entries; default: (objectClass=*)