Enterprise Help Site

Page tree

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 17 Next »

Configure LDAP login in Directory Access Settings in System.

(lightbulb)Contact your organization’s network administrator or IT professional for the exact details of your directory server.

  1. Start at LDAP Server Settings: add a new directory server or select one from the drop-down .
    Once there is an available directory server, the LDAP Login Settings and the LDAP Synchronization Settings columns appear.
  2. Toggle the Use for login switch to access LDAP Login Settings
  3. Select your prefered authentication mode:
    1. Use full DN: 
      Search directly for the user's full distinguished name to authenticate the users.
      Specify the authentication ID, prefixes and postfixes to find users on your directory server. 
      Every user who is a match for the request can log in to CAE LearningSpace with their credentials stored on the directory server.

    2. Resolve samAccountName:

      Note

      In this case, DN data is not defined in CAE LearningSpace, only the sAMAccountName of the query user.
      The query user needs permission to search the query base.

      Provide the name and password of the query user (dedicated for login authentication) on your directory server. 
      Provide a query base to define the level of the query in your directory tree. 
      Every user who is a match for the query can log in to CAE LearningSpace with their credentials stored on the directory server.

  4. Click the Test LDAP Login button to check whether everything has been set up correctly.



User LDAP Authentication

If a directory server is configured for user authentication, LDAP authentication can be set for users in the Edit User window.
This means users can login with their credentials stored on the directory server.

Warning

If LDAP authentication is set, users cannot log in with their CAE LearningSpace email and password and cannot modify them either.
(lightbulb)In case your directory server is down, users authenticated by LDAP will be unable to log in with their email and password from the directory server.
    For a temporary solution, LDAP authentication can be disabled for each user in their Edit User window and login details can be entered manually in CAE LearningSpace.
  1. Open a user for editing (authentication settings need to be managed one user at a time).
  2. Check the box at Authenticate by LDAP server in the Accounts tab.
    Accounts is displayed by default when a user is opened for editing    .
  3. Enter the server-side user ID in the LDAP ID field.

  • No labels