Registering/Editing LDAP Server Information
Registering LDAP Server Information
1.
Click [Configuration].
2.
Click [LDAP Server Management] in <Set User Authentication System>.
|
IMPORTANT
|
|
You can click [LDAP Server Management] only if you select [Server Authentication + Local Device Authentication] for [User Authentication System] and [LDAP Server] for [Authentication Server Type].
When clicking [LDAP Server Management], the display switched to the [LDAP Server Management] screen with settings in [Configuration] stored.
|
3.
Click [Add Server].
4.
Enter the LDAP server information → click [Connection Test].
The content and setting conditions that should be entered are as follows:
|
Item
|
Setting Content
|
Setting Conditions
|
Default Setting
|
|
Server Name
|
Enter the name of the LDAP server.
|
Must be from 1 to 24 characters. You cannot include spaces.
You cannot use "localhost."
|
<Null>
|
|
Server Address
|
Enter the IP address of the LDAP server.
|
Must be from 1 to 48 characters.
You cannot use "127.0.0.1."
|
<Null>
|
|
Port
|
Set the port number that the LDAP server uses.
|
Must be from 1 to 65535 digits. You cannot use zeros.
|
636 (if the [Use SSL] check box is selected.)
389 (if the [Use SSL] check box is selected.)
|
|
Comments
|
Enter comments about the LDAP server.
|
Must be from 1 to 64 characters.
|
<Null>
|
|
Use SSL
|
Set whether to use SSL.
|
To use SSL, it is necessary that the LDAP server is set to use SSL.
|
Selected
|
|
Use authentication information
|
Set whether to use authentication information to communicate with the LDAP server.
|
When selected: communicate with the LDAP server using the authentication information which is set for [User Name] and [Password].
When not selected: communicate with the LDAP server anonymously. It is necessary that the LDAP server is set to allow anonymous accesses.
|
Selected
|
|
User Name
|
Enter the LDAP server Administrator DN registered on the LDAP server.
Examples:
uid=Administrator, dc=ldap, dc=com
|
Must be from 1 to 128 characters. You cannot use asterisks.
|
<Null>
|
|
Password
|
Set a password that corresponds with the user name.
|
Must be from 1 to 24 characters.
|
<Null>
|
|
Attribute Name for Name
|
Set the name of the attribute that holds the names of the user in the LDAP server.
Example: uid
|
Must be from 1 to 64 characters. You cannot include spaces or the following symbols (\ / : * ? l < > [ ] ; , = + @ " &).
|
<Null>
|
|
Starting Point for Search
|
Set starting point for search in LDAP server authentication (where to start searching on the directory tree).
|
Must be from 1 to 128 characters.
|
<Null>
|
|
Attribute Name: E-Mail Address
|
Set the name of the attribute used to acquire the e-mail address of the logged-in user (LoginContext: mail).
Example: mail
|
Must be from 1 to 64 characters. You cannot include spaces or the following symbols (\ / : * ? l < > [ ] ; , = + @ " &).
|
<Null>
|
|
Attribute Name: Display Name
|
Set the name of the attribute used to acquire the display names of the logged-in user (LoginContext "cn").
Example: cn
|
Must be from 1 to 64 characters. You cannot include spaces or the following symbols (\ / : * ? l < > [ ] ; , = + @ " &).
|
<Null>
|
|
Domain Name Setting Method: Specify the domain name
|
Select if you set the domain name of the logged-in user directly (LoginContext "dc").
|
-
|
Selected
|
|
Domain Name
|
Set the domain name of the logged-in user (LoginContext "dc").
|
Must be from 1 to 64 characters. You cannot include spaces or the following symbols (\ / : * ? l < > [ ] ; , = + @ " &).
|
<Null>
|
|
Domain Name Setting Method: Specify the attribute name for domain name acquisition
|
Select if you acquire the domain name of the logged-in user from the specified attribute.
|
-
|
Not Selected
|
|
Attribute Name
|
Set the name of the attribute used to acquire the domain name of the logged-in user (LoginContext "dc").
|
Must be from 1 to 64 characters. You cannot include spaces or the following symbols (\ / : * ? l < > [ ] ; , = + @ " &). If the domain name cannot be acquired from the specified attribute and the logged-in user's DN contains "dc," the left most attribute value is set as LoginContext "dc." If not still acquired, the value set for [Server Name] is set as LoginContext "dc."
|
<Null>
|
|
NOTE
|
|
Make sure to set any value except [Comment], [Starting Point for Search], and [Domain Name Setting Method] ([Domain Name] and [Attribute Name]).
|
5.
Check the connection test, and click [Add].
Editing LDAP Server Information
1.
Click [Configuration].
2.
Click [LDAP Server Management] in <Set User Authentication System>.
3.
Click [Edit] for the desired LDAP server you want to edit.
4.
Edit the server information → click [Connection Test].
5.
Verify the connection test, and click [Update].
Deleting LDAP Server Information
1.
Click [Configuration].
2.
Click [LDAP Server Management] in <Set User Authentication System>.
3.
Select the check box for the desired LDAP server you want to delete → click [Delete].
