Connect to external directory services
PE connects to your external directory service(s) when a user logs in or when groups are imported. The supported directory services are OpenLDAP and Active Directory.
You can connect multiple LDAP directories. With multiple LDAP directories,
when a user logs in for the first time, PE looks for the
user in your LDAP directories in the order the directories were added to PE. To learn more about this, go to Working with LDAP users and user groups.
- In the console, on the Access control page, click the LDAP tab.
- Click Connect to an LDAP directory or Add an LDAP directory.
- Input the directory information.
For information about each field, refer to External directory settings.
If you do not supply User relative distinguished name or Group relative distinguished name, PE's RBAC service searches the entire base DN for the user or group.
- Click Connect. PE tests if
the connection is valid and then saves the configuration.
PE only tests the connection to the LDAP server. It does not test or validate LDAP queries.
- Repeat these steps if you need to connect additional LDAP directories.
What to do next
To allow your LDAP users to access PE, you need to import LDAP groups and assign roles, as explained in Working with LDAP users and user groups. Optionally, you can Verify directory server certificates.
To allow your LDAP users to access PE, you need to import LDAP groups and assign roles, as explained in Working with LDAP users and user groups. Optionally, you can Verify directory server certificates.
