LDAP Configuration Guide

This guide describes how to configure LDAP for Site Kit. Users need to carry out normal registration process after which they can login from white listed subnets using LDAP password. The group membership will be synchronized from LDAP on each login.

1. Login with administrator credentials.
2. Navigate to 'Configuration' -> 'Directories'.
3. Push 'Add' button.
4. Configure LDAP connection details:

• Address (127.0.0.1)
• Port (389)
• Login DN (uid=admin,ou=system) - Full distinguished name for site machine account on LDAP directory
• Login Password - Password for site machine account on LDAP directory
• User Email Attribute (sn) - The LDAP attribute which contains the same email address as used for login.
• User search Base DN (ou=users,ou=system) - The base DN of node under which the users are listed.
• Group search Base DN (ou=groups,ou=system) - The base DN of node under which the groups are listed.
• Remote-Local Group Mapping (Administrators=administrator,Users=user) - Mapping of LDAP groups to site groups.
• Required Remote Group (Administrators) - The LDAP group which is required for LDAP users to login to this site.
• Sub Net White List (127.0.0.1/32,192.168.0.1/32) - The net masks of subnets from which LDAP login can be done.

5. Check Enabled.
6. Push 'Save' button.