Versions Compared

Old Version 5

changes.mady.by.user Chooi San Chong

Saved on

compared with

New Version 6

changes.mady.by.user Chooi San Chong

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

SettingDescription
Authentication Method

Select the authentication method to be used. The following settings are available:

  • Default
  • LDAP

The default setting is authentication performed by Image Modified.

The selected authentication method becomes effective when the configuration is saved.

Note
titleNote!

Authentication for the user mzadmin is always performed by  regardless of the selected authentication method. 


URL

Enter the URL for the external authentication server. The default ports, 389 for LDAP and 686 for LDAPS, are used unless other ports are specified in the URL.

Info
titleExample of LDAP URL
ldap://ldap.example.com:389


Info
titleExample of LDAPS URL
ldaps://ldap.example.com:636


Test Connection

Click this button to test the connection to the authentication server. LDAP attributes and other settings than the URL are not used when testing the connection.

User Base DN

Enter the LDAP attributes for user lookups in the external authentication server. The substring %s in this value will be replaced with the username entered at login to produce an identifier that is passed to the LDAP server.

Info
titleExample of User Base DN
uid=%s,ou=users,dc=digitalroute,dc=com


Group Base DN

Enter the LDAP attributes for group lookups in the external authentication server.

Info
titleExample of Group Base DN
ou=groups,dc=digitalroute,dc=com


Info

Note: The name of the groups created in LDAP Server must be identical to the names configured in Access Controller Access Groups tab.


Use TLS

Select this check box to enable Transport Layer Security.

Note
titleNote!

The following must be considered when using TLS:

  • LDAPS and TLS is not a valid combination.

  • The URL must contain a fully qualified DNS name or the authentication will fail.

  • The default LDAP port, 389, should be used.


Use Active Directory  NamingSelect this check box if you want to use Active directory specific naming.
Enable Group Search Bind Credentials

Select this check box if you want to enable group search. You must also populate the Bind DN and Password fields. If you want to run an anonymous lookup, leave this check box empty.

Bind DN

If you want to use a specific Bind DN to search for the group, enter the Bind DN.

Password

If you want to use a specific Bind DN to search for the group, enter the password to connect LDAP Server.

...