A PostgreSQL Interface for Active Directory Data



Use the Remoting features of the Active Directory JDBC Driver to create a PostgreSQL entry-point for data access.

There are a vast number of PostgreSQL clients available on the Internet. From standard Drivers to BI and Analytics tools, PostgreSQL is a popular interface for data access. Using our JDBC Drivers, you can now create PostgreSQL entry-points that you can connect to from any standard client.

To access Active Directory data as a PostgreSQL database, use the CData JDBC Driver for Active Directory and a JDBC foreign data wrapper (FDW). In this article, we compile the FDW, install it, and query Active Directory data from PostgreSQL Server.

Connect to Active Directory Data as a JDBC Data Source

To connect to Active Directory as a JDBC data source, you will need the following:

  • Driver JAR path: The JAR is located in the lib subfolder of the installation directory.
  • Driver class: cdata.jdbc.activedirectory.ActiveDirectoryDriver

  • JDBC URL: The URL must start with "jdbc:activedirectory:" and can include any of the connection properties in name-value pairs separated with semicolons.

    To establish a connection, set the following properties:

    • Valid User and Password credentials (e.g., Domain\BobF or cn=Bob F,ou=Employees,dc=Domain).
    • Server information, including the IP or host name of the Server, as well as the Port.
    • BaseDN: This will limit the scope of LDAP searches to the height of the distinguished name provided.

      Note: Specifying a narrow BaseDN may greatly increase performance; for example, cn=users,dc=domain will only return results contained within cn=users and its children.

    Built-in Connection String Designer

    For assistance in constructing the JDBC URL, use the connection string designer built into the Active Directory JDBC Driver. Either double-click the JAR file or execute the jar file from the command-line.

    java -jar cdata.jdbc.activedirectory.jar

    Fill in the connection properties and copy the connection string to the clipboard.

    A typical JDBC URL is below:

    jdbc:activedirectory:User=cn=Bob F,ou=Employees,dc=Domain;Password=bob123;Server=10.0.1.2;Port=389;

Build the JDBC Foreign Data Wrapper

The Foreign Data Wrapper can be installed as an extension to PostgreSQL, without recompiling PostgreSQL. The jdbc2_fdw extension is used as an example (downloadable here).

  1. Add a symlink from the shared object for your version of the JRE to /usr/lib/libjvm.so. For example: ln -s /usr/lib/jvm/java-6-openjdk/jre/lib/amd64/server/libjvm.so /usr/lib/libjvm.so
  2. Start the build: make install USE_PGXS=1

Query Active Directory Data as a PostgreSQL Database

After you have installed the extension, follow the steps below to start executing queries to Active Directory data:

  1. Log into your database.
  2. Load the extension for the database: CREATE EXTENSION jdbc2_fdw;
  3. Create a server object for Active Directory: CREATE SERVER ActiveDirectory FOREIGN DATA WRAPPER jdbc2_fdw OPTIONS ( drivername 'cdata.jdbc.activedirectory.ActiveDirectoryDriver', url 'jdbc:activedirectory:User=cn=Bob F,ou=Employees,dc=Domain;Password=bob123;Server=10.0.1.2;Port=389;', querytimeout '15', jarfile '/home/MyUser/CData/CData\ JDBC\ Driver\ for\ Salesforce MyDriverEdition/lib/cdata.jdbc.activedirectory.jar');
  4. Create a user mapping for the username and password of a user known to the MySQL daemon. CREATE USER MAPPING for postgres SERVER ActiveDirectory OPTIONS ( username 'admin', password 'test');
  5. Create a foreign table in your local database: postgres=# CREATE FOREIGN TABLE user ( user_id text, user_Id text, user_LogonCount numeric) SERVER ActiveDirectory OPTIONS ( table_name 'user');
You can now execute read/write commands to Active Directory: postgres=# SELECT * FROM user;

Ready to get started?

Download a free trial of the Active Directory Driver to get started:

 Download Now

Learn more:

Active Directory Icon Active Directory JDBC Driver

Rapidly create and deploy powerful Java applications that integrate with Active Directory Users, Groups, Roles, Contacts, and more!