Previous LDAP Configuration

Note: This page applies to using Centro v7.7.4 or earlier.

LDAP (Lightweight Directory Access Protocol) is a software protocol for enabling anyone to locate organizations, individuals, and other resources such as files and devices in a network, whether on the public Internet or on a corporate intranet.

Users loaded via LDAP have their user names set to their email address and their passwords are their domain passwords verified by the LDAP server.

To load users using LDAP there are two files that must be configured.

Configuring centroSettings.confg: (C:\inetpub\wwwroot\Centro\Configuration)

Set LDAPEnabled to true.
Set LDAPSelectedType to the type of LDAP.
Example: ActiveDirectory.

centroSettings.config

Key

Value

Description

LDAPEnabled

true*

false

Set to true to use LDAP

LDAP.SelectedType

ActiveDirectory *

ApacheDS

eDirectory

Select the type of LDAP

Configuring appsSettings.confg (C:\inetpub\wwwroot\Centro\Configuration)

This file has three sections of settings for the three LDAP types.

Find the LDAP type section of settings.
Configure the appropriate settings based on your LDAP setup.

NOTE: At least (1) User must be assigned to a Group for it to be displayed in the list for Importing

appSettings.config

ApacheDS

Key	Value
LDAP.ApacheDS.path	LDAP://localhost:10389/ *
LDAP.ApacheDS.authenticationTypes	None *
LDAP.ApacheDS.authenticationTypes	false *
LDAP.ApacheDS.rootDistinguishedName	ou=system
LDAP.ApacheDS.userRelativeName	ou=users
LDAP.ApacheDS.userDistinguishedNameAttribute	uid
LDAP.ApacheDS.userDisplayNameAttribute	cn
LDAP.ApacheDS.userDistinguishedNameAttribute	uid
LDAP.ApacheDS.userDisplayNameAttribute	cn
LDAP.ApacheDS.userEmailAttribute	mail
LDAP.ApacheDS.centroUsernameAttribute	mail
LDAP.ApacheDS.userMemberOfAttribute	o
LDAP.ApacheDS.userObjectClassInclude	person
LDAP.ApacheDS.userObjectClassExclude	computer
LDAP.ApacheDS.groupRDN	groups
LDAP.ApacheDS.groupRDNAttribute	cn
LDAP.ApacheDS.groupMemberAttr	member
LDAP.ApacheDS.groupObjectClass	groupOfNames
LDAP.ApacheDS.adminUsername	uid=admin,ou=system
LDAP.ApacheDS.adminPassword	secret

ActiveDirectory

Key	Value
LDAP.ActiveDirectory.rootURL	LDAP://actify.com/
LDAP.ActiveDirectory.authenticationTypes	None * Anonymous Delegation Encryption FastBind ReadonlyServer Sealing Secure SecureSocketsLayer ServerBind Signing
LDAP.ActiveDirectory.supportsVirtualMemberOf	true
LDAP.ActiveDirectory.rootDistinguishedName	DC=ActifyIsolated,DC=com
LDAP.ActiveDirectory.userRelativeDN
LDAP.ActiveDirectory.userDistinguishedNameAttribute	distinguishedName
LDAP.ActiveDirectory.userEmailAttribute	userPrincipalName
LDAP.ActiveDirectory.centroUsernameAttribute	userPrincipalName
LDAP.ActiveDirectory.userDisplayNameAttribute	CN
LDAP.ActiveDirectory.userMemberOfAttribute	memberOf
LDAP.ActiveDirectory.userObjectClassInclude	person
LDAP.ActiveDirectory.userObjectClassExclude	computer
LDAP.ActiveDirectory.groupRDN
LDAP.ActiveDirectory.groupRDNAttribute	CN
LDAP.ActiveDirectory.groupObjectClass	organizationlUnit
LDAP.ActiveDirectory.immutableIdentifierAttribute	objectGUID
LDAP.ActiveDirectory.adminUsername	Administrator
LDAP.ActiveDirectory.adminPassword	Password!

eDirectory

Key	Value
LDAP.eDirectory.path	LDAPS://"
LDAP.eDirectory.authenticationTypes	SecureSocketsLayer, FastBind
LDAP.eDirectory.supportsVirtualMemberOf	true
LDAP.eDirectory.rootDistinguishedName	ou=PTS,o=CF1
LDAP.eDirectory.userRelativeName
LDAP.eDirectory.userDistinguishedNameAttribute	distinguishedName
LDAP.eDirectory.userDisplayNameAttribute	fullName
LDAP.eDirectory.userMemberOfAttribute	memberOf
LDAP.eDirectory.userEmailAttribute	userMail
LDAP.eDirectory.centroUsernameAttribute	userMail
LDAP.eDirectory.userObjectClassInclude	Person
LDAP.eDirectory.userObjectClassExclude	Computer
LDAP.eDirectory.groupRDN
LDAP.eDirectory.groupRDNAttribute	cn
LDAP.eDirectory.groupObjectClass
LDAP.eDirectory.adminUsername	CENTROADM
LDAP.eDirectory.adminPassword