Installation guide
LDAP Configuration
Acano solution: Deployment Guide R1.2 76-1006-06-K
Page 45
Address = this is the IP address of your AD server
Port = usually 636
Username = the Distinguished Name (DN) of a registered user. You may want to create
a user for this purpose
Password = the password for the user name you are connecting as
Secure Connection = select this setting for a secure connection
For Example:
Address: 100.133.2.44
Port: 636
Username: cn=Fred Bloggs,cn=Users,OU=Sales,dc=YourCompany,dc=com
Password: password
Note: From R1.2 we support secure LDAP. By default AD runs on port 636 for secure
communications and port 389 for insecure communications. The Acano solution supports
both but we recommend using 636. Note that you must select Secure Connection (see
above) for communications to be secure: using port 636 alone is not enough.
3. The Import Settings control which users should be imported.
Base Distinguished Name = the node in the LDAP tree from which to import users.
The following is a sensible choice for base DN to import users
cn=Users,dc=sales,dc=YourCompany,dc=com
Filter = a filter expression that must be satisfied by the attribute values in a user's AD
record. The syntax for the Filter field is described in rfc4515.
A rule for importing people into the main coSpace database might reasonably be 'import
anyone with an email address', and this is expressed by the following filter:
mail=*
For testing purposes you may want to import a named user and a group of test users
whose mail address starts with “test”; for example:
(|(mail=fred.bloggs*)(mail=test*))
If you wanted to import everyone apart from one named user, use this format:
(!(mail=fred.bloggs*))
To import users that belong to a specific group, you can filter on the memberOf
attribute. For example
memberOf=cn=apac,cn=Users,dc=MyCompany,dc=com
This imports both groups and people that are members of the APAC group. To restrict to
people, use:
(&(memberOf=cn=apac,cn=Users,dc=MyCompany,dc=com)(objectClass=person))