Versions Compared

Old Version 2

changes.mady.by.user Dimitris Dimotsis

Saved on

compared with

New Version 3

changes.mady.by.user Pericles Laros

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

 

Connecting to an Active Directory in CostOS

  1. Login to CostOS Web Console(Image Added)
  2. Choose User Management (Image Added)>LDAP Configuration
  3. Enter the values for the settings, as described below.
  4. Save the directory settings

Notes:

  • Logged user should have 'Create/edit Users' role

Server settings

Setting

Description

Active

Active/Deactivated interval Synchronization

Hostname

The host name of your directory server. Examples:

  • ad.mydomain.com
  • ldap.mydomain.com
  • opends.mydomain.com
Port

The port on which your directory server is listening. Examples:

  • 389
  • 636 (for example, for SSL)
Bind Dn

The distinguished name of the user that the application will use when connecting to the directory server.

Examples:

 

  • cn=administrator,cn=users,dc=ad,dc=example,dc=com
  • cn=user,dc=domain,dc=name
  • user@domain.name
Warning

By default, all users can read the uSNChanged attribute; 

 The specific privileges required by the user to connect to LDAP are "Bind" and "Read" (user info, group info, group membership), which the user can obtain by being a member of the Active Directory's built-in administrators group.

Configuring the Costos Server

TODO: INSTRUCTIONS ABOUT THE AD ACCOUNT TYPE NEEDED TO CONNECT

...

Connecting via SSL

In many cases the Active Directory uses a Self-Signed Certificate, or a Signed Certificate that is Signed by a non-trusted Root Certificate. When the CostOS Server tries to connect using the SSL port it will fail, since it does not trust the connection.

...