This document provides information about the Servers report screen that displays information about the LDAP/AD provisioning servers.
Path to access
- On Segura® Platform, in the navigation bar, hover over the Products menu and select Settings.
- In the side menu, select Provisioning > Active directory > Servers.
Actions menu
| Item |
Type |
Description |
| Add |
Button |
Directs to the LDAP server screen to register a new LDAP server in Segura® Platform. |
| Actions |
Dropdown menu |
Displays the options for Print report, Export CSV and Schedule report. |
Search fields
| Item |
Type |
Description |
| Host |
Text field |
Filters by the host address (can be IP address or hostname) in Segura® Platform. |
| Status |
Dropdown menu |
Filters the registers by their activation state. The options are Enabled and Disabled. Clear the field to enable the All option. |
Report fields
- ID: displays the server's registration code within Segura® Platform.
- Host.
- Port: displays the port where the LDAP/AD server is listening.
- Username: displays the user's username for connection to the server.
- DN Base: displays the server DN Base parameters.
- Account canonical form: displays the values of the account form. The values will be as follows:
- DN.
- Username.
- Backslash.
- Main.
- Account filter format: displays the filter expression used to specify search criteria for finding user accounts or other objects in the directory. For example:
(&(objectClass=user)(sAMAccountName=johndoe)).
- Use SSL: displays whether the server uses SSL.
- Bind requires DN?: displays whether the server requires DN for the Bind process.
- Account domain name: displays the name of the domain in which the server is registered.
- Account domain name short: also known as NetBIOS Domain Name, is the shortened version of the domain name in a network environment that uses directory services. This field displays the short name used to log in to the Windows network. For example: Segura.
- Order: order of servers that will be used in authentication.
- Status.
- Actions:
Info
By default, the report displays 30 records per screen. To go to the next screen, click the forward buttons at the end of the report.
LDAP server screen
Domain, device and credential section
| Item |
Type |
Required |
Description |
| Domain* |
Dropdown menu |
Yes |
Domain registered in Segura® Platform. |
| Credential for authentication* |
Dropdown menu |
Yes |
Credential that will be used for authentication on the LDAP server. |
| Add |
Button |
Not applicable |
Opens the Domain modal for inserting the domain and short name. |
LDAP section
| Item |
Type |
Required |
Description |
| Host* |
Text field |
Yes |
IP or host of the LDAP server. |
| Port* |
Text field |
Yes |
Port where the LDAP server will listen. |
| DN Base* |
Text field |
Yes |
Server DN Base. |
| Account form* |
Dropdown menu |
Yes |
Account form. |
| Order* |
Quantity input |
Yes |
Order in which the servers will run. |
| Enabled* |
Toggle button |
Yes |
Indicates the status of the server in Segura® Platform. |
| Member is DN?* |
Toggle button |
Yes |
Indicates whether the member will be identified by the DN. |
| Bind requires DN?* |
Toggle button |
Yes |
Indicates whether the Bind process will require the use of the DN. |
| Use SSL?* |
Toggle button |
Yes |
Indicates the use of SSL. By default, it comes as Disabled. |
| Network Connector |
Dropdown menu |
No |
Indicates the connector that will be used with the LDAP/AD server. |
| Account filter format |
Text field |
No |
Indicates the account filter format. |
| Use credential domain* |
Toggle button |
Yes |
Indicates whether the server should use a domain credential. |
| Ignore and disabled expired users* |
Toggle button |
Yes |
Configures the LDAP group synchronization to ignore users with the expired AccountExpires attribute and automatically disable users who have already been synchronized, but are now expired. |
| Username attribute |
Text field |
No |
Indicates the unique username of the account. |
| DN Bind (leave blank to use DN Base) |
Text field |
No |
Indicates whether the DN will be used as a unique identifier. |
| Group |
Text field |
No |
Indicates the group name. |
| Group DN |
Text field |
No |
Indicates the DN of the group in question. |
| Group attribute (GroupAttr) |
Text field |
No |
Indicates the attributes of the group in question. |
| Group scope |
Text field |
No |
Indicates the scope of the group in question. |
| Group filter |
Text field |
No |
Indicates a filter expression to be used in the group in question. |
| Member attribute (MemberAttr) |
Text field |
No |
Indicates which member attributes are required for the group in question. |
Review section
The review section allows you to check the new group's information before proceeding. To save, click Save.
LDAP authentication test screen
| Item |
Type |
Required |
Description |
| Server |
Label |
Not applicable |
Indicates the name and port of the LDAP server being tested for authentication. |
| Base DN* |
Text field |
Yes |
Base DN registered on the server. |
| User* |
Text field |
Yes |
Username that will be used in the authentication test. |
| Password |
Text field |
Yes |
Password of the user that will be used in the authentication test. |