Skip to content

Authentication Types - LDAP

Use this subform to configure the LDAP authentication type.

Form Fields

  • Name: The name of the authentication profile.

  • Status: The status of the authentication profile.

  • Primary Server: The primary server to use for LDAP.

  • Secondary Server: The failover server to use for LDAP.

  • Distinguished Name: The LDAP distinguished name specific to your organization. Use %s for username. For example:

    CN=%s,CN=Users,DC=example,DC=com

  • Secure Connection: The type of secure connection. The options are:

    • None: Do not use a secure connection.

    • LDAPS: Secure on connection

    • TLS: Negotiated

  • Port: The port to use for LDAP.

Setting Up LDAP External Authentication

  1. Get the CA certificate or self-signed certificate for the LDAP server and place it in the $A1BASEDIR/etc/ssl directory.

  2. In the $A1BASEDIR/etc/ directory, create a file called ldap.conf.

  3. Add the following two lines to ldap.conf, replacing <UA_home> with the directory where you installed Unified Assurance (for example, /opt/assure1) and <LDAP_CA_CERT> with the exact name of the CA cert (for example, OCUACA.pem):

    TLS_REQCERT never 
TLS_CACERT <UA_home>/etc/ssl/<LDAP_CA_CERT>

  4. Save and close the file.

  5. Restart the Unified Assurance web service:

    systemctl restart assure1-web