This post is more than 5 years old
1 Rookie
•
3 Posts
0
133652
December 21st, 2010 00:00
LDAP Configuration
Hi, I'm trying to configure the LDAP authentication service.
The DN for the username I know is correct (this came from Softerra's LDAP browser).
The part I'm not too sure about is the LDAP query Prefix and Suffix's.
Should the Prefix just be CN= ?
All I want to do is Add a couple of AD groups from 1 AD OU.
Any pointers would be helpful.
Thanks
The DN for the username I know is correct (this came from Softerra's LDAP browser).
The part I'm not too sure about is the LDAP query Prefix and Suffix's.
Should the Prefix just be CN= ?
All I want to do is Add a couple of AD groups from 1 AD OU.
Any pointers would be helpful.
Thanks
No Events found!
pgadgil
94 Posts
0
December 29th, 2010 04:00
Step one
You will notice that the LDAP query prefix is set to CN=
Change CN= to be sAMAccount=
This will behave the same as NTLM authentication and transverse the AD OU tree
Step two
Change LDAP query suffix to only reflect the DC settings
EXAMPLE : ,DC=example,DC=com
Step three
Change the LDAP Context for user searching to same as previous step but without the leading comma
EXAMPLE: DC=example,DC=com
Step Four
Change The scope(s) to search for groups to point to an OU that contains the group that the users are memberof
Create an Internal group in vFoglight by the exact same name ( as the AD group in previous step) and assign Roles to the group. This when a user logs on using their AD credentials, he/she will be automatically added to this group and get corresponding Roles.
This is the gist of it. If you still run into errors then best option would be to open a Support case because at that point we will have to review the settings.
Regards
db4dns
15 Posts
0
January 13th, 2011 14:00
a good hint is, that every time you press the "Edit" button in the LDAP configuration. vFoglight forget the Admin Password ;-)
At my first LDAP connection i search more than a half day to find this out.
DB