Skip to content

Authentication Types - LDAP

Use this subform to configure the LDAP authentication type.

You must also create the ldap.conf file to point to the SSL certificate for the LDAP server. See Configuring External Authentication Types in Unified Assurance Security Guide for more information about configuring external authentication types, including using multiple instances and supporting transient users.

Form Fields

  • Protocol: The protocol that the authentication type instance uses.

  • Name: The name of the authentication type instance. Use this to differentiate between instances.

  • Status: The status of the authentication type instance.

  • Default: Relevant for transient users only. Select Default Instance to authenticate with this instance when the username or domain specified at login does not match any of the other configured authentication protocols.

    There can only be one default instance across LDAP and Active Directory instances. Selecting this for one instance automatically deselects it for any other instance where it was selected.

  • Transient User Login: Select this to expand fields relevant to transient users.

    • Domain: The LDAP server domain name to use for transient LDAP users.

    • Group Attribute: The LDAP attribute to look for user groups in. For example, memberOf.

  • Primary Server: The primary server to use for LDAP.

  • Secondary Server: The failover server to use for LDAP.

  • Distinguished Name: The LDAP distinguished name specific to your organization. Use %s for username. For example:

    CN=%s,CN=Users,DC=example,DC=com

  • Secure Connection: The type of secure connection. The options are:

    • None: Do not use a secure connection.

    • LDAPS: Secure on connection

    • TLS: Negotiated

  • Port: The port to use for LDAP.