Currently we test very limited numbers of attributes while integrating with LDAP:
- Host & Port,
- Bind DN
no other parameters are tested which cause returning the false positive output of the test.
For example despite entering invalid Base DN we still return success.
However simple typos in UI or misconfiguration on the LDAP side may cause directory fail.
Additionally, to the above we should test:
- LDAP Schema configuration,
- LDAP permission for write operations,
- Retrieve a sample user,
- Perform a test authentication (as possible in Crowd),