Panel | |
---|---|
|
Excerpt |
---|
The LDAP Organizational Identity Source Plugin is designed to integrate with an LDAP server. |
Modes
Section | ||||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
Installation
This is a non-core plugin, see Installing and Enabling Registry Plugins for more information.
This plugin requires PHP 5.6 or later (for ldap_escape).
PHP 7.2 or later is recommended when integrating with Active Directory (for JSON_INVALID_UTF8_SUBSTITUTE
).
Configuration
The LDAP Source Plugin supports both anonymous and authenticated binds.
...
The following attributes are currently supported by LdapSource:
LDAP Attribute | Org Identity Source Attribute |
---|---|
edupersonaffiliation | Affiliation |
employeenumber | Identifier/identifier, type=Enterprise |
givenname | Name/given, type=Official |
l | Address/locality, type=Office |
EmailAddress/mail, type=Official, verified | |
o | o |
ou | ou |
postalcode | Address/postal_code, type=Office |
sn | Name/family, type=Official |
st | Address/state, type=Office |
street | Address/street, type=Office |
telephonenumber | TelephoneNumber/number, type=Office |
title | title |
Constraints
Full syncs are dependent on the LDAP server having sufficiently high search limits to allow the full directory to be read, or for binding to be performed with a Bind DN with unlimited search permission.
...