LDAP/AD Directory Version 2

All Plugins / Auth / Ldapv2

Identity Card

StatusCore
Plugin LabelLDAP/AD Directory Version 2
Short DescriptionAuthentication datas are stored in an LDAP/AD directory.
Plugin Identifierauth.ldapv2
AuthorPydio
Urldocs/references/plugins/auth/ldapv2
Dependencies

Documentation

Instance parameters

LabelDescriptionTypeDefault
Basic Settings
Server Provider *
LDAP_SERVER_TYPE
Provider name of ldap server. Choose other provider if your ldap is not in the listSelect (1, 2, 4, 100)
Configuration Template
LDAP_TEMPLATE
Choose a predefined configuration for your schema. You can create yourown template in data/plugins/auth.ldapv2/ConfigTemplatesSelect (Custom, MicrosoftADMappingGroupPath, MicrosoftADMappingOU, MicrosoftADSimple, OpenLdapPosixSimple, OpenLdapSimple)

LDAP_CONNECTION_LEGEND
Set up main connection to server. Use the button to test that your parameters are correct.Legend
Server Address *
LDAP_URL
LDAP Server Address (IP or name)String
Protocol *
LDAP_PROTOCOL
Connect through ldap or ldapsSelect (ldap, ldaps, tls)ldap
LDAP Port
LDAP_PORT
LDAP Server Port (leave blank for default)String389
LDAP bind username
LDAP_USER
Username (uid + dn) of LDAP bind userString
LDAP bind password
LDAP_PASSWORD
Password of LDAP bind userString
People DN *
LDAP_DN
DNs where the users are storedString
Attributes Mapping

LDAP_MAPPING_LEGEND
Use this section to automatically map some LDAP attributes to Pydio plugins parameters values.Legend
LDAP attribute
MAPPING_LDAP_PARAM
Name of the LDAP attribute to readString
Mapping Type
MAPPING_LOCAL_TYPE
Determine the type of mappingSelect (plugin_param, role_id, group_path, profile)
Plugin parameter
MAPPING_LOCAL_PARAM
Name of the custom local parameter to setString
Advanced Settings

LDAP_ADVANCED_LEGEND
Advanced SettignsLegend
LDAP Filter
LDAP_FILTER
Filter which users to fetch.String
User attribute
LDAP_USERATTR
Username attributeString
Groups DN
LDAP_GDN
DN where the groups are stored. Must be used in conjonction with a group parameter mapping, generally using the memberOf feature.String
LDAP Groups Filter
LDAP_GROUP_FILTER
Filter which groups to fetch.String
Group attribute
LDAP_GROUPATTR
Group main attribute to be used as group IdString
Group display name attribute
LDAP_GROUP_DISPLAY_ATTR
Group display attribute to be used as a labelString
Role Prefix (for memberof)
LDAP_GROUP_PREFIX
Role prefix when you mapping memberof => roleIDStringldap_
Expert Settings

LDAP_EXPERT_LEGEND
ExpertLegend
Search Users by Attribute
LDAP_SEARCHUSER_ATTR
When looking for a user through autocomplete, search on a specific parameter instead of user IDString
LDAP Server page size
LDAP_PAGE_SIZE
Page size of LDAP ServerString
Cache ldap query
LDAP_CACHE_TTL
Locally cache the result of ldap query during X minutesInteger30
User attribute meaning memberof
LDAP_USER_ATTRIBUTE_MEANING_MEMBEROF
By default is MemberOf, but some system use different name such as isMemberOf, ibm-AllGroupsString
Group attribute meaning member
LDAP_GROUP_ATTRIBUTE_MEANING_MEMBER
Usually be member, memberuidString
Format of value of attribute member of group object
LDAP_VALUE_MEMBERATTR_IN_GROUP
Format of value of attribute member of group objectSelect (fulldn, userid, usercn)true
Auth Driver Commons
Auto Create User
AUTOCREATE_AJXPUSER
When set to true, the user object is created automatically if the authentication succeed. Used by remote authentication systems.Booleanfalse
Login Redirect
LOGIN_REDIRECT
If set to a given URL, the login action will not trigger the display of login screen but redirect to this URL.String
Administrator Login
AJXP_ADMIN_LOGIN
For exotic auth drivers, an user ID that must be considered as admin by default.String
Auto apply role
AUTO_APPLY_ROLE
For multiple authentication, apply this role to users authenticated via this driverString