Akkadian Provisioning Manager communicates with Microsoft Active Directory using the LDAP. There are several requirements for Provisioning Manager to integrate with Microsoft Active Directory.
Requirements:
- Provisioning Manager must have access to the Active Directory environment. If secure LDAP will be used to connect, Provisioning Manager must connected to Active Directory using the fully qualified domain name of the server.
- Must have an Active Directory account with required privileges. If Active Directory will be used for authentication, read-only access is adequate, but elevated privileges are required to provision in Active Directory.
To connect to Microsoft Active Directory:
- Select Application Servers from the System menu
- Select AD / LDAP tab
- Click Add to configure a new integration
- Complete the required fields:
Field | Description |
---|---|
Secure LDAP | Select this option to use secure LDAP |
LDAP Config Name | Enter a name to identify this specific LDAP configuration |
Base | Enter the LDAP search base |
Server | The LDAP server IP address or DNS name |
Port* | Enter the LDAP server port number. |
Username | Enter the LDAP Username used to authenticate to the LDAP server |
Password | Enter the LDAP Password used to authenticate to the LDAP server |
Username Bind Attribute | Enter LDAP Attribute to bind to Username during authentication |
Certification Authority (CA) | Upload certificates for secure LDAP |
Root Intermediate Certificate | Upload Root Intermediate Certificate |
Root Certificate | Upload Root Certificate |
- Click Save
- Repeat this process for additional integrations
*Standard Port Numbers:
Port | Description |
---|---|
389 | Non-secure LDAP Port used to target a specific domain |
636 | Secure LDAP Port used to target a specific domain |
3268 | Read-only non-secure LDAP Port used to connect to a AD Global Catalog server |
3269 | Read-only secure LDAP Port used to connect to a AD Global Catalog server |
Post your comment on this topic.