Versions Compared

Old Version 6

changes.mady.by.user user-52ec1

Saved on

compared with

New Version 7

changes.mady.by.user user-52ec1

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

UI ComponentDescription
Configuration nameEnter the connection name of the LDAP server. A duplicate name is allowed.
Server address

Enter the server IP address/hostname. This is a mandatory field and is editable once created. You will get an error message if you enter a duplicate server IP address or hostname.

PortIf you need change default port number.
Connect timeout (ms)The maximum amount of time in milliseconds for the system to system to successfully authenticate a single server (5000 is the default value). If authentication fails, the system will query the next server in the queue. This field is required.
Read timeout (ms)The maximum amount of time in milliseconds for the system to system to successfully query User DN before requiring similar authentication service (10000 is the default value). This field is required.

Anonymous bind/Administrator bind

A mode of bind specifying whether a user connects to the LDAP server with a specific username or anonymously for finding the Distinguished Name (DN) of a user corresponding to the user trying to log into the TWCloud system.

Note
titleNote

If you select Anonymous bind, the Username and Password are not required, and the system username and password will be disabled.


UsernameThe DN of a user to connect to the LDAP server and perform queries.
PasswordThe system password to connect to the LDAP server and perform queries.

Enabled/Disabled

The option to enable a connection with the LDAP server. When disabled users within LDAP will not be able to sign in.

To save the LDAP server's configuration properties. The function of this button is the same as that of the Save button on the Edit LDAP Configuration page.
Specific for authentication data
Search baseThe authentication methods. It defines the location in the directory from which the LDAP search begins.

LDAP query - To search for users with an LDAP query. This is the default option.

User DN Template - The button to search for users by User DN.

User DNTo store a template for mapping user authentication with LDAP servers using the LDAP distinguished names.
Query

An LDAP query for retrieving the DN of a user, e.g., (uid={0}).

Note
titleNote

If you want to apply the group, you will need to enter the query filter for the user and group, e.g., as in the following.

(|(&(objectclass=person)(uid={0}))(&(objectclass=group)(cn={0})))

Specific for encryption data
Encryption ProtocolSSL and TLS are data encryption and authentication for a secure connection with the server. You can select None, SSL/TLS. Selecting None indicates you do not need to use an encryption protocol.
LDAP server certificate

The option to select a certificate file. The LDAP Server Certificate file is exported from the LDAP server to make a secure connection between the TWCloud Admin and LDAP server. Only files with the following extensions may be uploaded: crt, pem

To select a certificate file (enabled if SSL/TLS is selected).

To remove the certificate file (enabled if either SSL/TLS is selected).

...