Similarly to NTLM, login via FORM can be used to verify users against an AD. This is done by configuring a connection via LDAP between Web Port and up to two AD servers. Web Port will then first try to verify the user against AD, failing that a local verification will be made.
When LDAP is used, matching groups must be created in AD and Web Port. The permissions for Web Port are set to each group in SYSTEM SETTINGS/ACCESS/GROUPS.
The following settings can be set for LDAP:
Setting: | Description: |
Enable LDAP | Enables the LDAP lookup function |
Active Directory Host | Address of AD server |
Base DN | Location to begin AD search |
User Filter | Search terms. {0} is exchanged for user name when searching |
Domain | Used to target the search to a particular server |
Auth-type | Login type to AD |
User name | User name for connection to AD |
Password | Password for connection to AD |
Information:
The above information is provided by the IT department that administers AD servers.
Tip!
To verify that the LDAP information is correct and that a connection exists against AD, a test login is performed.
The login must be done with a user who is in AD and the result must be a set of groups the user is a member of.