Configure ldap – Epiphan Pearl User Manual
Page 42
Pearl User Guide
User administration
Configure LDAP
You can use the Lightweight Directory Access Protocol (LDAP) for authentication into the system. Specify user
roles by using group DNs for users who log in as the administrator, operator, or as a viewer.
The system has only one admin user and one operator: LDAP users log in as either the admin or
operator, they do not have their own private profiles.
When enabled, LDAP authentication is an alternative to the regular system usernames and
passwords. You may still login as admin, operator or viewer using the passwords for those
accounts. Furthermore, any LDAP users with the name admin, operator or viewer are ignored. The
local accounts are used instead.
For security reasons, you should configure passwords for the local accounts. See Configure
LDAP.
These instructions assume you have a pre-configured LDAP server. The server must support anonymous
binding or have a special bind account with search access priveleges. (Note that Active Directory does not
support anonymous binding.)
LDAP referrals, restrictions and failovers are not supported.
To configure LDAP authentication for your Pearl:
1. Connect to the admin interface using your preferred connection mechanism. See
.
2. Login as admin.
3. Select the Access passwords link in the Configuration menu; the password configuration page opens.
4. Scroll to the LDAP authentication section.
29