Configuring LDAP Authentication

In the LDAP Authentication Settings section, you can configure ChangeGear to use LDAP entries for ChangeGear user accounts. You can choose from AD, ADAM, and generic LDAP server types and either Basic or Windows authentication.

To make use of LDAP authentication, you need acquire the administrator credentials for use in the Authentication settings. The administrator password is stored in an encrypted form in the ChangeGear configuration settings.

Note: For ADAM users, the msDS-UserAccountDisabled attribute should be set to "False" or "Not Set" or the user cannot be bound and the connection to LDAP will fail.

To configure LDAP authentication:

  1. Click the Administration tab.

  1. In the Administration section, click Global Settings.

  1. Click LDAP.

  1. Enable the LDAP Authentication by sliding the Enable slider.

  1. Select your LDAP server type from the drop-down list.

  1. Select the authentication type. If you use Basic authentication, you will need to enter the Administrator’s distinguished name and password in step 9.

  1. Enter the host and port number of your LDAP server.

  1. Select the Use LDAP/SSL check box if you want to use SSL as the LDAP transport protocol.

  1. If you have selected Basic authentication, enter the distinguished name and password to the administrative account.

Note: You can test the LDAP connection to ensure that you have entered the information correctly.

  1. Enter the partition name in the LDAP Search Base DN field.

  1. Enter the UID attribute name that you want to use for the ChangeGear logon name.

  1. Click Save.

Note: You may need to reset IIS for these changes to effect ChangeGear Web users.

  1. To test the LDAP configuration, create a user in LDAP and try to logon to ChangeGear as that user.