Settings table
List with description of settings for LDAP found in settings page.
URL
URL that points to your LDAP server.
empty
Bind Username
Bind DN used for authentication.
cn=admin,dc=example,dc=org
Bind Password
Password used for authentication.
empty
Member Attribute
Naming attribute for group membership.
memberOf
Username Attribute
Naming attribute for users.
cn
User Search Base
Relative Distinguished Name (RDN) of your user entries.
ou=users,dc=example,dc=org
User Object Class
Object class used for user entries.
inetOrgPerson
Additional User Object Classes
Auxiliary classes for user entries
simpleSecurityObject, sambaSamAccount
Groupname Attribute
Naming attribute for groups.
cn
Group Object Class
Object class used for group entries.
groupOfUniqueNames
Group Member Attribute
Naming attribute for group membership.
uniqueMember
Group Search Base
Relative Distinguished Name (RDN) of your group entries.
ou=groups,dc=example,dc=org
Settings in depth
There are a few settings that may be not so obvious:
Additional User Object Classes
: User object classes that will be assigned to a user and will also define assigned attributes. For example,simpleSecurityObject
will make users posses theuserPassword
attribute.User Object Class
: The structural class of your users. Just like the additional user object classes it will define the added attributes but also will be used during user search. Defguard will only consider entries with this class as users.
Last updated
Was this helpful?