Enterprise Help Site

Page tree

Available to users with User Manager or Admin privilege.

Set up LDAP authentication for users once a directory server is configured for user authentication

LDAP authentication must be switched on for users in the Users module to allow them to log in with their directory server credentials to LearningSpace Enterprise.

LDAP authentication can be switched on for one user at a time or for a group of selected users:

Switch On LDAP for a User

  1. Open a user for editing. 
  2. Check Authenticate by LDAP server in the Account tab.



Switch on LDAP for Multiple Users

  1. Select users from the Users panel on the right.

    Click on the All users option on the left to display every user registered in your system or select a group to filter users. 

    Use the select-all checkbox in the Users panel to select every user in one go. 

  2. Click Open on the right.



    The 'Edit Multiple User' pop-up will open where you can manage the settings of your selected users all at once.

  3. At 'Reset authentication method to:' open the drop-down.
  4. Select 'LDAP server authentication:



  5. Once LDAP Authentication is switched on for users, fill in the Authentication ID inside their profiles. LDAP Login Settings in the Directory Access Settings tab determine the required Authentication ID for users. 

If the Authentication ID has been set to Email in the Directory Access Settings, you do not have to add anything to the user's profile.

Warning

When LDAP Authentication is switched on, users cannot log in with their LearningSpace email and password or modify their credentials even if their credentials are added to their profiles. For the same reason, the email address is not needed in a user's LearningSpace Enterprise account in case LDAP Authentication is utilized.

    6. Open each user for editing.

  1. If you set up a full DN sequence for authentication:
    1. Provide the user's LDAP ID stored on your directory server in the corresponding field if the Authentication ID has been set to 'LDAP ID' in the Directory Access Settings tab. 



    2. Provide the user's UCID (Unique Custom ID) stored on your directory server in the corresponding field if the Authentication ID has been set to 'UCID' in the Directory Access Settings tab. 


  3.  If you set up the Resolve samAccountName method for authentication, provide the user's samAccountName:

               


Troubleshooting: Directory Server Is Down

If your directory server is down for some reason, withdraw LDAP authentication from users and allow them to log in with their LearningSpace Enterprise credentials as a temporary solution.

Related pages

For further information, visit our User Manager, System Manager and System - How to pages.