Configuring LDAP Settings
How to configure your archive's LDAP settings.
LDAP is the common name for accessing the content of directory servers such as Microsoft Active Directory, Novell eDirectory, and Lotus Domino. Cryoserver uses LDAP in three ways:
To assist when validating a User Login [if ‘translate user’ option is used]; and/or.
To expand email addresses in non-enveloped emails.
To provide User Account lists for selection purposes under User Directory, Mailbox Reader, and Folder Replication.
Administrators can configure one or more connections to their organization’s LDAP server.
Navigate to Basic Configuration > LDAP Servers.
Click the Create New Server button.
Enter / Select the required values in the fields. Refer to the table below for field names and descriptions.
Click Fetch Base DN.
Continue to enter/select values in the remainder of the form.
The next step is to test the connection. Click Test Connection.
A confirmation message will be displayed.
There are generally 3 outcomes:
The connection is successful and the credentials are correct.
Credentials are incorrect.
Sometimes after a long wait, the Connection to the LDAP server fails or is blocked in some way.
Click Save Details.
The LDAP server will be integrated.
Field | Description |
---|---|
LDAP Services | Type of LDAP service(s) you want to use. |
LDAP directory user | User of the LDAP directory, who has read-only permission to search the LDAP directory. |
LDAP directory password | Password of the LDAP directory. |
Confirm password | Password of the LDAP directory. |
LDAP user DN | Root of search for the user in the LDAP directory. |
LDAP append base DN | Base DN text which will be appended to the user DN before being used in a LDAP bind to login to the account. |
LDAP translate users | Specifies whether the login user should be searched in each search DN path or combines the login ID with the user DN to create LDAP bind user. |
LDAP search DNs | LDAP path(s) where users and distribution groups can be found. |
LDAP unique user id attribute | LDAP unique user ID attribute which is required only when Cryoserver uses the restriction mode of GUID. |
Associate all email domains | Specifies whether all the email domains, registered in the company settings, should be associated with the LDAP server. |
Email Domains | Domain name(s) which determine if an email is inbound, outbound, or internal. |
LDAP Type | Type of LDAP connection being created. |
LDAP primary field name | User's primary SMTP email address. |
LDAP primary field pattern | Regular expression that specifies how to extract of the email address. |
LDAP secondary field name | User's alternative (alias) email address(es). |
LDAP secondary field pattern | Regular expression that specifies how to extract of the alternate email address. |
LDAP display field name | Full name of the user that will be displayed. |
LDAP translation key | LDAP attribute name. |
LDAP creation date field | Date on which the LDAP account is created. |
LDAP Attribute for IMAP Username | Username that will be used to login to the iMAP server when restoring mails to the inbox. |
Public Folder Identifier Field | Unique identifier that is used to read a public folder LDAP account. This identifier allows users to switch identity to an account to which they have access to the public folder. |
LDAP secondary field format | Format of the secondary field that will be used as a LDAP search term. |
LDAP member field name | LDAP field name that has the distribution group members. |
Use display name in search | Specifies whether or not the LDAP user’s display name is used in search. |
Last updated