Creating LDAP server integration

To create an integration with an LDAP server:

1. In the Administration → Integrations → LDAP section, click the Connect server button.

   The LDAP server settings window opens.

2. Specify the following mandatory settings in the form fields:
   • Web address (URL) of your company's LDAP server.

     The web address of the LDAP server is specified as follows: ldap://<host>:<port>. For example: ldap://ldap.example.com:389.

   • Base distinguished name is a name that uniquely identifies and describes a record of the LDAP directory server.

     For example, the distinguished name for example.com is dc=example, dc=com.

   • Distinguished name of the local user that is associated with the selected Active Directory record and required to access Active Directory.
   • Group filter for defining the group search settings in Active Directory.
   • User filter for defining the user search settings in Active Directory.

3. Under Base schema, specify the values of the following attributes and classes of objects:
   • Object class is the type of object to search for.
   • Organizational unit class is the LDAP object class that identifies the object as a container object within the domain.
   • User class is the LDAP object class that identifies the object as a user.
   • Organization unit name is the attribute of a group that identifies its name.
   • Group class is the class that identifies the LDAP object as a group.
   • Distinguished name is the distinguished name of the record.
4. Under User settings, specify the values of the following object attributes:
   • User first name.
   • Last name of the user.
   • Group name.
   • User username.
   • User password.
   • Group member.
   • User email address.
   • User member of.
5. Click the Save button above the form for LDAP server integration data.
6. To verify that the values were filled in correctly, click the Test connection button above the form for LDAP server integration data.

   Kaspersky Container Security will display a notification informing you of the successful connection to the LDAP server or a failure to establish the connection.

Example of completed fields when configuring LDAP server integration

If the LDAP server certificate changes, reconfigure the integration.

You can use the configured integration when creating and assigning user roles.