Registering/Editing LDAP Server Information

Registering LDAP Server Information

1.
Click [Configuration].
2.
Click [LDAP Server Management] in <Set User Authentication System>.
IMPORTANT
You can click [LDAP Server Management] only if you select [Server Authentication + Local Device Authentication] for [User Authentication System] and [LDAP Server] for [Authentication Server Type].
When you click [LDAP Server Management] to display the [LDAP Server Management] screen, the settings in [Configuration] is stored.
3.
Click [Add Server].
4.
Enter the LDAP server information → click [Connection Test].
The content and setting conditions that should be entered are as follows:
Item
Setting Content
Setting Conditions
Default Setting
Server Name
Enter the name of the LDAP server.
Must be from 1 to 24 characters. You cannot include spaces.
You cannot use "localhost."
<Null>
Server Address
Enter the IP address of the LDAP server.
Must be from 1 to 48 characters.
You cannot use "127.0.0.1."
<Null>
Port
Set the port number that the LDAP server uses.
Must be from 1 to 65535. You cannot use zeros.
636 (if the [Use TLS] check box is selected.)
389 (if the [Use TLS] check box is not selected.)
Comments
Enter comments about the LDAP server.
Must be from 1 to 64 characters.
<Null>
Use TLS
Set whether to use TLS.
To use TLS, it is necessary that the LDAP server is set to use TLS.
Selected
Use authentication information
Set whether to use authentication information to communicate with the LDAP server.
When selected: communicate with the LDAP server using the authentication information which is set for [User Name] and [Password].
When not selected: communicate with the LDAP server anonymously. It is necessary that the LDAP server is set to allow anonymous accesses.
Selected
User Name
Enter the LDAP server Administrator DN registered on the LDAP server.
Examples:
uid=Administrator, dc=ldap, dc=com
Must be from 1 to 128 characters. You cannot use asterisks.
<Null>
Password
Set a password that corresponds with the user name.
Must be from 1 to 24 characters.
<Null>
Attribute Name for Name
Set the name of the attribute that holds the names of the user in the LDAP server.
Example: uid
Must be from 1 to 64 characters. You cannot include spaces or the following symbols (\ / : * ? l < > [ ] ; , = + @ " &).
<Null>
Starting Point for Search
Set starting point for search in LDAP server authentication (where to start searching on the directory tree).
Must be from 1 to 128 characters.
<Null>
Attribute Name: E-Mail Address
Set the name of the attribute used to acquire the e-mail address of the logged-in user (LoginContext: mail).
Example: mail
Must be from 1 to 64 characters. You cannot include spaces or the following symbols (\ / : * ? l < > [ ] ; , = + @ " &).
<Null>
Attribute Name: Display Name
Set the name of the attribute used to acquire the display names of the logged-in user (LoginContext "cn").
Example: cn
Must be from 1 to 64 characters. You cannot include spaces or the following symbols (\ / : * ? l < > [ ] ; , = + @ " &).
<Null>
Domain Name Setting Method: Specify the domain name
Select if you set the domain name of the logged-in user directly (LoginContext "dc").
-
Selected
Domain Name
Set the domain name of the logged-in user (LoginContext "dc").
Must be from 1 to 64 characters. You cannot include spaces or the following symbols (\ / : * ? l < > [ ] ; , = + @ " &).
<Null>
Domain Name Setting Method: Specify the attribute name for domain name acquisition
Select if you acquire the domain name of the logged-in user from the specified attribute.
-
Not Selected
Attribute Name
Set the name of the attribute used to acquire the domain name of the logged-in user (LoginContext "dc").
Must be from 1 to 64 characters. You cannot include spaces or the following symbols (\ / : * ? l < > [ ] ; , = + @ " &).
If the domain name cannot be acquired from the specified attribute and the logged-in user's DN contains "dc," the left most attribute value is set as LoginContext "dc." If not still acquired, the value set for [Server Name] is set as LoginContext "dc."
<Null>
NOTE
Make sure to set any value except [Comment], [Starting Point for Search], and [Domain Name Setting Method] ([Domain Name] and [Attribute Name]).
5.
Check the connection test, and click [Add].

Editing LDAP Server Information

1.
Click [Configuration].
2.
Click [LDAP Server Management] in <Set User Authentication System>.
3.
Click [Edit] for the desired LDAP server you want to edit.
4.
Edit the server information → click [Connection Test].
5.
Verify the connection test, and click [Update].

Deleting LDAP Server Information

1.
Click [Configuration].
2.
Click [LDAP Server Management] in <Set User Authentication System>.
3.
Select the check box for the desired LDAP server you want to delete → click [Delete].
52YS-223