Directory Connection - Setup Overview

Table of contents
You are currently comparing two old versions - only when you are comparing against the latest version can you revert. Return to version archive.

Combined revision comparison

Here is a basic overview of setting up a connnection to your Active Directory / LDAP directory.

Step 1: Create a Directory Connection

  • Add a User Directory connection
    • Configure the connection user
    • Configure the options
    • Configure the scope of the connection - the UO's and Groups that will be included
      • Option A) Set the Base Distinguished Name
      • Option B) Filter on Group Membership
      • (Optionally) Set the User Relative & Group Relative DN's
    • Click "Test the connection" button (v7.9.0+)

Step 2: Import the Security Groups

    Next import
  • Import the Security Groups you wish to bring into Password Server, which can be given access to folders/entriesthesecurity groups which will help in assigning permissions. Note: that by filtering by Group Membership can simplify finding roles.
    • Importing Groups
      • Groups will be imported as "Roles"
    • Import Options
      • Also Assign Roles - users are auto-assigned Roles based on their existing security group membership
      • Auto-import - no manual import of users required

Step 3: Import the Users

    Next import only
  • Import the users required in your Password Server Importing Users . Note: Step 4: (Optional) Setup a Password Server Security Group that byCreate a AD/LDAP filtering by Group MembershipSecurity Group for can simplify findingyour Password Server users .
    • Setup a AD Security Group for solely for Password Server users Add the users who will have access to this group

      Use the Security Group (mentioned in step 1) by setting up an Importing UsersAdvanced User Filter on the directory connection Click "Test the connection" button (v7.9.0+)

Other changes:

  1. /body/ul[3]/li/a/@href: "mks://localhost/Documentation/Pleasant_Password_Server/I._LDAP_&_AD/Quick_Active_Directory_and_OpenLDAP_User_Guide#Recommended_User_Filter""mks://localhost/Documentation/Pleasant_Password_Server/I._LDAP_&_AD/AD:_How_to_Filter_for_Nested//Inherited_Membership"
  2. /body/ul[3]/li/a/@title: "Documentation/Pleasant Password Server/I. LDAP & AD/Quick Active Directory and OpenLDAP User Guide#Recommended User Filter""Documentation/Pleasant Password Server/I. LDAP & AD/AD: How to Filter for Nested//Inherited Membership"
  3. /body/ul[3]/li/ul/li/p/a/@href: "mks://localhost/Documentation/Pleasant_Password_Server/I._LDAP_&_AD/AD:_How_to_Filter_for_Nested//Inherited_Membership""mks://localhost/Documentation/Pleasant_Password_Server/I._LDAP_&_AD/Quick_Active_Directory_and_OpenLDAP_User_Guide#Importing_Users"
  4. /body/ul[3]/li/ul/li/p/a/@title: "https://info.pleasantsolutions.com/index.php?title=Documentation/Pleasant_Password_Server/I._LDAP_&_AD/AD:_How_to_Filter_for_Nested//Inherited_Membership""https://info.pleasantsolutions.com/index.php?title=Documentation/Pleasant_Password_Server/I._LDAP_&_AD/Quick_Active_Directory_and_OpenLDAP_User_Guide#Importing_Users"

Version from 18:05, 25 Oct 2018

This revision modified by CalebMathison (Ban)

Here is a basic overview of setting up a connnection to your Active Directory / LDAP directory.

Step 1: Create a Directory Connection

  • Add a User Directory connection
    • Configure the connection user
    • Configure the options
    • Configure the scope of the connection - the UO's and Groups that will be included
      • Set the Base Distinguished Name
      • (Optionally) Set the User Relative & Group Relative DN's
    • Click "Test the connection" button (v7.9.0+)

Step 2: Import the Security Groups

Next import the security groups which will help in assigning permissions.

  • Importing Groups
    • Groups will be imported as "Roles"
  • Import Options
    • Also Assign Roles - users are auto-assigned Roles based on their existing security group membership
    • Auto-import - no manual import of users required

Step 3: Import the Users

Next import only the users required in your Password Server

Step 4: (Optional) Setup a Password Server Security Group

  • Create a AD/LDAP Security Group for your Password Server users
    • Setup a AD Security Group for solely for Password Server users
    • Add the users who will have access to this group
    • Use the Security Group (mentioned in step 1) by setting up an Advanced User Filter on the directory connection
    • Click "Test the connection" button (v7.9.0+)

Version as of 18:18, 28 Jan 2019

This revision modified by CalebMathison (Ban)

Here is a basic overview of setting up a connnection to your Active Directory / LDAP directory.

Step 1: Create a Directory Connection

  • Add a User Directory connection
    • Configure the connection user
    • Configure the options
    • Configure the scope of the connection
      • Option A) Set the Base Distinguished Name
      • Option B) Filter on Group Membership
      • (Optionally) Set the User Relative & Group Relative DN's
    • Click "Test the connection" button (v7.9.0+)

Step 2: Import the Security Groups

  • Import the Security Groups you wish to bring into Password Server, which can be given access to folders/entries. Note: that by filtering by Group Membership can simplify finding roles.
    • Importing Groups
      • Groups will be imported as "Roles"
    • Import Options
      • Also Assign Roles - users are auto-assigned Roles based on their existing security group membership
      • Auto-import - no manual import of users required

Step 3: Import the Users