5.4.1. LDAP Configuration

Note

This section details the configuration options for the unencrypted LDAP protocol selection. If your connection should be encrypted, refer to Section 5.4.2 - LDAPS Configuration for configuration information.

LDAP Settings Example

Fig. 5.2 LDAP Settings Example

Below is a list of each LDAP Settings field, detailing what information should be entered.

Use LDAP User Group Settings

Optional, refer to Section 7.2.1 - Enable LDAP Group Mapping

Protocol
LDAP
Server Hostname

This is the fully qualified domain name of the LDAP server or domain controller the recorder will use to authenticate users to.

Example: dc1.contoso.net

Server Port Number

This is the LDAP port that the recorder will use to communicate with the LDAP server.

If all recorder users exist in the same domain as the recorder’s bind account, the default LDAP port would be used. If users exist in the parent and child domains, the LDAP Global Catalog (GC) port would be used.

Table 5.1 LDAP Server Port Numbers

Protocol

Port

LDAP

TCP/UDP

389

LDAP GC

TCP

3268

Base DN for User Search

This field should contain the root path containing all recorder users. It should be intered using LDAP syntax.

Example: OU=Users,OU=HQ,DC=contoso,DC=net

Important

The recorder’s LDAP Bind user should also be located within this path.

Table 5.2 LDAP DIT Path Syntax

Key

Description

DC

Domain Component

CN

Common Name

OU

Organizational Unit

LDAP Bind Username

This is the username of the service account created for the recorder. This should be the username only.

Example: NLRecorder

LDAP Bind Password

This is the password of the service account created for the recorder.

LDAP Bind Realm

This is the NetBIOS domain name of the service account created for the recorder. This is commonly the first domain component (DC) of the Base DN when read from left to right.