Configuring LDAP

After you have registered LDAP as an authentication system you must specify its properties.

See Registering external authentication systems.

To specify the properties of the LDAP authentication system:

  1. Select LDAP in the Authentication Systems dialog.
  2. Click Properties.
    The Propeties of LDAP Authentication dialog is displayed. It has these tabs:
    • General
    • Users
    • Group
    • Authentication System
  3. On the General tab, specify this information:
    Text box Description
    LDAP server name Specify the server name or the IP address of the server on which the LDAP directory is located.
    Unique name of the directory root Specify the unique name of the root directory. For example, dc=mysubdomain,dc=mydomain.
    LDAP port number
  4. On the Users tab, specify this user identification information:
    Text box Description
    Filter to get LDAP users Enter the information to distinguish users from other objects in the LDAP directory, e.g. (&(objectcategory=person)(objectclass=user)).
    Attribute type of the group membership Enter the name of the attribute type, in which the group membership of users is stored, e.g. memberof.
    Attribute type of the user name Enter the name of the attribute type, in which the names of the users are stored, e.g. samaccountname.
    Attribute type of the unique user ID Enter the name of the attribute type, in which the unique ID of users is stored, e.g. objectsid.
    Attribute type of the user description Enter the name of the attribute type, in which the description of users is stored, e.g. description.
  5. On the Groups tab, specify this information to identify groups in the LDAP directory:
    Text box Description
    Filter to get LDAP groups Enter the information to distinguish groups from other objects in the LDAP directory, e.g.objectclass=group.
    Attribute type of the user membership Enter the name of the attribute type, in which users are stored who belong to a group, e.g. element.
    Attribute type of the group name Enter the name of the attribute type, in which the group names are stored, e.g. samaccountname.
    Attribute type of the unique group ID Enter the name of the attribute type, in which the unique ID of groups is stored, e.g. objectsid.
    Attribute type of the group description Enter the name of the attribute type, in which the description of groups is stored, e.g. description.
  6. On the Authentication Systems tab, the Basic Authentication (simple bind) check box is selected by default. To specify another system, clear the check box and select another system.
Parent topic: User management