Edit LDAP server

  • Edit LDAP server using the following procedure.
    1. Click "LDAP server" on the toolbar.
    2. Edit the necessary items using the "LDAP server" window displayed.
    3. Use the [Test] button to check whether the LDAP server can be accessed normally.
    4. Update using the [OK] button.
Explanation
The following settings can be changed using the "LDAP server" window.

LDAP server types Select the type of LDAP server to be used.
The settable items switch depending on the LDAP server type.
Server name Specify the name of the connected LDAP server.
You can specify either the domain name or IP address.
Port numbers Specify the port number for the connected LDAP server.
Normally there is no problem with the defaults.
Base DN Specify the LDAP directory search parameters.
Start searching the base DN as a directory tree root.
Bind DN When searching the directory tree, enter the ID name used for verification to the LDAP server.
Specify this item only if the LDAP server type is "LDAP".
User ID When searching the directory tree, specify the account name used for verification to the LDAP server.
A domain name might be required by the user ID depending on the environment.
This item does not exist when the LDAP server type is "LDAP".
Password Specify the password to be used to for LDAP server authentication.
User name properties Specify which properties to handle as user names in the entries obtained from the directory tree.
Properties that do not exist in the acquired entry cannot be detected as user names.
When the LDAP server type is "LDAP", you can type an attribute name in the area below by clicking "Key In Directly".
(Notes)
When "User logon name (pre-Windows 2000)" is selected, "@domain name" is not added to retrieved user names.
When "User logon name (Active Directory environment)" is selected, "@domain name" is added to retrieved user names.
Connect anonymously Connect to the LDAP server anonymously.
If this option is selected, "bind DN" and "password" will be disabled.
This item cannot be changed when the LDAP server type is "Active Directory".
Using SSL Use SSL to communicate with the LDAP server.
To use this option, it is necessary to have installed a valid LDAP server authentication document on the operating system.
Includes sub-trees Make sure the subtrees are also searched when searching entries from the directory tree.
If this option is enabled, "base DN" and entries included below it will be searched.
If disabled, only entries included in the "base DN" will be searched.
If this option is enabled, the search may take some minutes depending on the base DN values.
In this case, cancel the search, and review the base DN values before performing the search again.

Additional supplements
The following operations are also possible when editing LDAP server.

  • LDAP server settings can be obtained from the device.
Restrictions
  • For port numbers, integers from 1 to 65535 can be used.
Back