LDAP Authentication - ALE Learnset Manager - 23.1 - 23.1 - Brainware - external - Brainware/ALE-Learnset-Manager/23.1/ALE-Learnset-Manager-Installation-and-Upgrade-Guide/Installation-Process/Configure-User-Authentication/LDAP-Authentication - 2024-05-01

ALE Learnset Manager Installation and Upgrade Guide
Platform
Brainware
Product
ALE Learnset Manager
Release
23.1
License

There are two options for configuring LDAP authentication:

• All users are stored within a single node of the directory. In this case, only the server URL and a pattern is required that defines how the distinguished name (DN) of a user is constructed.

• The users are stored in a tree structure. In this case, additional information is required including a user account that can log into the LDAP server and perform a search operation for a given username.

To configure LDAP authentication with all users in a single node, complete the following steps.

  1. In the LDAP Authentication dialog box, enter the details, as required. For more information on specific fields, refer to the following table.
    Field Description
    Users are

    In the Users are list, click In a single node.
    Server URL

    Enter the LDAP URL of the server.

    Note: URLs should start with ldap or ldaps and contain the name or IP address of the server and the port. Optionally, the URL can also include a root path within the directory.

    Example: ldap://ad.mycompany.com:389/DC=ad,DC= DC=mycompany,DC=com
    User DN Template

    Enter a template for distinguished names for user. Use {user} as a placeholder for the username.

    Example: uid={user},ou=employee,o=mycompany
    User

    Enter the user account to be used for testing the configuration.

    Note: This is an optional step.
    Password

    Enter the password for the user account used for testing the configuration.

    Note: This is an optional step.
  2. Click > to proceed.

To configure LDAP authentication with users in a directory structure, complete the following steps.

  1. In the LDAP Authentication dialog box, enter the details, as required. For more information on specific fields, refer to the following table.
    Field Description
    Users are In the Users are list, click In a tree structure.
    Server URL

    Enter the LDAP URL of the server.

    Note: URLs should start with ldap or ldaps and contain the name or IP address of the server and the port. Optionally, the URL can also include a root path within the directory.

    Example: ldap://ad.mycompany.com:389/DC=ad,DC= DC=mycompany,DC=com
    User DN Enter the distinguished name of a user account. This account is used to connect to the LDAP server and perform search operations.
    Password Enter the password associated with the DN user account.
    Search Filter

    Enter a pattern for the filter that is used for searching the user whose authentication is to be checked.

    Use {user} as a placeholder for the username.

    When connecting to Active Directory, use the following pattern: sAMAccountName={user}.

    Search Paths

    Enter one or more paths that contain the users.

    Note: This is an optional step. Only valid LDAP paths are accepted (for example: ou=users). Multiple paths can be separated by semicolons. If no path is provided at all, the entire directory is searched.
    User

    Enter the user account to be used for testing the configuration.

    Note: This is an optional step.
    Password Enter the password for the user account used for testing the configuration.
    Note: This is an optional step.
  2. Click > to proceed. The installer connects to the LDAP server to verify the configuration and performs an authentication with the test account, if applicable.