Skip to main content

LDAP / Active Directory Data Source

An LDAP server address, a distinguished name (DN), a password, and a Base DN need to be specified in the according fields.

Server address

The server address is given as an URL like ldap://example.com:389 or ldaps://example.com.

Warning:

Note that only ldaps:// is encrypted via SSL/TLS (requires a trusted and valid certificate). If no trusted certificate is installed on the LDAPS server, a CA certificate can be used to establish trust (see ca-certs section of the operations docs).

The default ldap ports are:

PortUsage
389ldap (not encrypted)
636ldaps (SSL/TLS encrypted)
3368active directory global catalog (not encrypted)
3269active directory global catalog (use for authentication)