Your suggested change has been received. Thank you.

close
Thales Logo

All

  • All
  • CipherTrust Manager
  • CipherTrust Application Data Protection (CADP)
  • CipherTrust Application Key Management (CAKM)
  • CipherTrust Batch Data Transformation (BDT)
  • CipherTrust Cloud Key Management (CCKM)
  • CipherTrust Data Discovery and Classification (DDC)
  • CipherTrust Data Protection Gateway (DPG)
  • CipherTrust Database Protection (CDP)
  • CipherTrust Intelligent Protection (CIP)
  • CipherTrust Integrations
  • CipherTrust Migrations
  • CipherTrust RESTful Data Protection (CRDP)
  • CipherTrust Transparent Encryption (CTE)
  • CipherTrust Transparent Encryption Userspace (CTE-U)
  • CipherTrust Secrets Management (CSM)
  • CipherTrust Vaulted Tokenization (CT-V)
  • CipherTrust Vaultless Tokenization (CT-VL)
  • CTE-Linux
  • CTE-Windows
  • CTE-AIX
  • CTE-K8s
  • CTE-U
  • Crypto Command Center
  • Data Protection on Demand
  • Luna Cloud HSM
  • Luna Network HSM
  • Luna PCIe HSM
  • Luna USB HSM
  • OneWelcome Identity Platform
  • ProtectApp LUKS
  • ProtectServer 2 HSM
  • ProtectServer 3 HSM
  • SafeNet Trusted Access (STA)
  • SafeNet MobilePASS+
  • SafeNet MobilePASS+ for Android
  • SafeNet MobilePASS+ for Chrome
  • SafeNet MobilePASS+ for macOS
  • SafeNet MobilePASS+ for iOS
  • SafeNet MobilePASS+ for WatchOS
  • SafeNet MobilePASS+ for Windows
  • SafeNet Synchronization Agent
  • SafeNet Logging Agent
  • SafeNet Agent for FreeRADIUS
  • SafeNet Agent for NPS
  • SafeNet Agent for Windows Logon
  • SafeNet Authentication Service Private Cloud Edition (SAS PCE)
  • SafeNet Remote Logging Agent
  • SafeNet Keycloak Agent
  • SafeNet IDPrime Virtual (IDPV)
  • SafeNet FIDO Key Manager
  • SafeNet FIDO Key Manager for Android
  • SafeNet FIDO Key Manager for iOS
  • SafeNet FIDO Key Manager for Windows
back

Tasks

Configuring LDAP Settings.ini File

search

Please Note:

printsuggest an edit

Configuring LDAP Settings.ini File

Set up the settings.ini file according to which LDAP scenario you implement:

To test your settings, use the CLI option --query_user to the ldap command:

auth> ldap --query_user NAME

copy link to clipboardAD Email

The following is an example settings.ini configuration for an LDAP setup with AD email:

auth> ldap --show
SERVER_URI ldap://10.3.118.98:389
BIND_DN cts0@cts.vormetric.com
BIND_PASSWORD ********
USER_PREFIX
USER_SEARCH_FILTER sAMAccountName
USER_SEARCH_SCOPE CN=Users,DC=cts,DC=vormetric,DC=com
GROUP_SEARCH_SCOPE CN=Users,DC=cts,DC=vormetric,DC=com
ACTIVE_USER_GROUP CN=ctsUsers,CN=Users,DC=cts,DC=vormetric,DC=com
STAFF_USER_GROUP CN=ctsManager,CN=Users,DC=cts,DC=vormetric,DC=com
SUPER_USER_GROUP CN=ctsAdmin,CN=Users,DC=cts,DC=vormetric,DC=com
ENABLE true

copy link to clipboardAD DN

The following is an example settings.ini configuration for an LDAP setup with AD DN:

auth> ldap --show
SERVER_URI ldap://10.3.118.98:389
BIND_DN CN=cts User0,CN=Users,DC=cts,DC=vormetric,DC=com
BIND_PASSWORD ********
USER_PREFIX CN
USER_SEARCH_FILTER cn
USER_SEARCH_SCOPE CN=Users,DC=cts,DC=vormetric,DC=com
GROUP_SEARCH_SCOPE CN=Users,DC=cts,DC=vormetric,DC=com
ACTIVE_USER_GROUP CN=ctsUsers,CN=Users,DC=cts,DC=vormetric,DC=com
STAFF_USER_GROUP CN=ctsManager,CN=Users,DC=cts,DC=vormetric,DC=com
SUPER_USER_GROUP CN=ctsAdmin,CN=Users,DC=cts,DC=vormetric,DC=com
ENABLE true

copy link to clipboardLinux LDAP DN

The following is an example settings.ini configuration for setup with LDAP DN on Linux:

auth> ldap --show
SERVER_URI ldap://10.10.62.132:389
BIND_DN uid=tuser1,ou=People,dc=i,dc=vormetric,dc=com
BIND_PASSWORD ********
USER_PREFIX uid
USER_SEARCH_FILTER uid
USER_SEARCH_SCOPE ou=People,dc=i,dc=vormetric,dc=com
GROUP_SEARCH_SCOPE ou=Groups,dc=i,dc=vormetric,dc=com
ACTIVE_USER_GROUP cn=ctsUsers,ou=Groups,dc=i,dc=vormetric,dc=com
STAFF_USER_GROUP cn=ctsManager,ou=Groups,dc=i,dc=vormetric,dc=com
SUPER_USER_GROUP cn=ctsAdmin,ou=Groups,dc=i,dc=vormetric,dc=com
ENABLE true

On this page