Configuring LDAP Directory Service

You can map, modify, test, or delete an LDAP Directory Service instance as detailed in:

Mapping a new LDAP Directory Service

To add and map a new LDAP Directory Service instance, perform the following steps:

  1. Log in to the Admin Portal as a system administrator.

  2. Click Settings > Users > Directory Services > Add LDAP Directory.

  3. Provide the required information.

  4. Click the Mappings tab. To set up a mapping for your LDAP, edit the attribute names in the right column to the names of the attributes in your LDAP schema that fulfill the description in the left column.

Note:    The attribute mapping for "Unique Identifier" cannot be modified after saving the configuration.

  1. Click Connectors and select the Centrify Connector to use with this service or let the LDAP server find an available cloud connector.

  2. Click Save.

Testing the attribute mapping

Once you have completed mapping the LDAP service, click the Test button and enter the login name of the user you wish to test. The user entry will be loaded from the LDAP server and the attribute mapping results for that user are displayed.

Updating an existing LDAP Directory Service

To update an existing LDAP Directory Service instance, perform the following steps:

  1. Log in to the Admin Portal as a system administrator.

  2. Click Settings > Users > Directory Services and click an existing LDAP Directory Service instance.

  3. Update the values needed and click Save.

Deleting an LDAP Directory Service

To delete an LDAP Directory Service, perform the following steps:

  1. Log in to the Admin Portal as a system administrator.

  2. Click Settings > Users > Directory Services and select an existing LDAP Directory Service account.

  3. Navigate to Actions and choose Delete from the dropdown.