Configure LDAP as the Authentication Method
You can use the Lightweight Directory Access Protocol (LDAP) directory services to authenticate users to access Cyware applications. This authentication method requires users to provide a valid username and password combination as configured in the LDAP directory to sign in to the application.
Note
Users with active accounts in User Management can sign in using their LDAP credentials. For more information, see Create User.
Before you Start
Ensure that the application servers have active network connectivity with the LDAP server.
Steps
To configure the LDAP authentication method, follow these steps:
Go to Admin Panel > Authentication.
Select LDAP and click the Edit icon.
Enter the following details:
Domain Name: Enter the domain name of the LDAP server database. For example, lab.cyware.com.
Server IP/Domain: Enter the IP address or URL of the LDAP server database. For example, 192.168.1.10
Port: Enter the port number of the LDAP server to connect to the database. For example, 389.
Domain Controller: Enter the details for the LDAP domain name. These details are provided by the LDAP admin of your organization. For example.com.
SSL encrypted: Enable this option to encrypt the application connection with the LDAP server.
Two-Factor Authentication: Enable this option to authenticate users using LDAP credentials and a One-Time Password (OTP). Two-factor authentication adds an extra layer of protection from accessing the applications. To enable Two-Factor Authentication, configure the following details:
Type: Select the type for two-factor authentication. You can select either TOTP or Email. This requires the user to enter a one-time password (OTP) sent to their email or generated by an authenticator app.
OTP Expiration: Enter the duration (in minutes) for which the one-time password (OTP) sent to the email or authenticator app remains valid. After this time, the OTP will expire and cannot be used for authentication.
Click Save.