JFrog Platform: 10.132.0.88
LDAP Server: 10.132.0.2
LDAP Port: 389
LDAP Settings:
LDAP Group Settings:
The LDAP tree:
Instructions
1. Run tcpdump and start capturing network traffic from the JFrog Platform / Artifactory server host.
We will use the following command options:
-i → Listen on interface. If unspecified, tcpdump searches the system interface list for the lowest numbered, configured up interface. An interface argument of “any” can be used to capture packets from all interfaces.
-n → Don't convert addresses (i.e., host addresses, port numbers, etc.) to names.
-w file → Write the raw packets to file rather than parsing and printing them out.
host → <LDAP server IP>
port → <LDAP server port>
Example:
$ tcpdump -i any -n -w /var/opt/jfrog/artifactory/log/ldap.pcap host 10.166.0.2 and port 389
2. While tcpdump is running, perform one of the following LDAP transactions:
-
Attempt to log in to JFrog Platform / Artifactory that is using LDAP authentication
-
Make a test connection from the LDAP Settings
-
Attempt to import LDAP Groups in the LDAP Group Settings
3. <Ctrl+C> to stop the tcpdump capture.
4. Open the tcpdump capture file (ldap.pcap) in Wireshark.
You may now take the advantage of Wireshark to filter the traffic while viewing, eg. filter by LDAP/TCP protocol (Display Filters).