This section describes how to configure OmniGroupServer to retrieve user and group information from an LDAP directory.
To retrieve security information from an LDAP directory
In the [Repositories]
section, create a repository to store the LDAP groups. For example:
[Repositories] Number=1 0=LDAP
Create a section to contain the task details and set the following configuration parameters:
GroupServerLibrary
|
The path (including the file name) to the library file that allows the group server to access the repository. Use the LDAP group server library, ogs_ldap . |
LDAPServer
|
The host name or IP address of the machine that hosts the LDAP directory. |
LDAPPort
|
The port to use to access the LDAP directory. |
LDAPBase
|
The distinguished name of the search base. |
LDAPType
|
The type of LDAP server (for example, MAD for Microsoft Active Directory). |
LDAPSecurityType
|
The type of security to use when communicating with the LDAP server (for example, SSL or TLS ). |
LDAPBindMethod
|
The type of authentication to use to access the LDAP directory. To log on as the same user that is running OmniGroupServer, set this parameter to NEGOTIATE . |
For example:
[LDAP] GroupServerLibrary=ogs_ldap LDAPServer=myLDAPserver LDAPPort=636 LDAPBase=DC=DOMAIN,DC=COM LDAPType=MAD LDAPSecurityType=SSL LDAPBindMethod=NEGOTIATE
For a complete list of configuration parameters that you can use, refer to the OmniGroupServer Reference.
Save and close the OmniGroupServer configuration file.