SystemConfigure LDAP Authentication

By integrating Lightweight Directory Access Protocol (LDAP) authentication into Loftware Enterprise SP, you can enable users to sign into Loftware Enterprise SP by using their domain credentials.

Note: To perform this task, you must be signed in as the ClientAdmin, SystemAdmin, or SuperAdmin user. For more information, see Controlling Access to System Settings

To integrate LDAP into Loftware Enterprise SP, use the following procedure.

Note: If you are configuring a multi-site deploymentClosed A configuration of a Loftware environment that includes Loftware instances located at different sites within the same WAN. In a multi-site deployment, each Loftware instance acts as either a headquarters or a facility. of Loftware Enterprise SP, you must sign in to each facility site to configure LDAP or Azure authentication. LDAP or Azure authentication information is not synced from headquarters to facilities.

  1. In System System Management, click Authentication.
  2. Click New LDAP Authentication for a new configuration, or click the existing configuration that you want to modify.
  3. Configure the LDAP Authentication panel. For more information, see User Interface: LDAP Authentication.
  4. If you do not want to use LDAP auto-provisioning, skip this step.
    If you want use LDAP auto-provisioning, do the following in the Auto Provisioning panel.
    1. To turn on auto-provisioning now, select the Enable Auto Provisioning check box. Otherwise, you can leave the check box clear, set up auto-provisioning now, and enable it later.
    2. For LDAP Vendor, select an option from the drop-down list. When selected, the remaining fields are pre-filled with the default settings for the selected LDAP vendor, but you must modify the settings to match your LDAP configuration. For more information, see User Interface: LDAP Authentication.
    3. In the Loftware Group to LDAP Group mapping table, click the Add button to add a Loftware group or groups to the mapping table. For more information, see User Interface: Group Mapping Table.

      Tip: The group must already exist in Loftware Enterprise SP and have permissions configured within Loftware Enterprise SP. For more information, see Create or Modify a Group.

    4. Click the LDAP Group Lookup button. The LDAP Group Lookup dialog box is displayed.
    5. Enter information by which to search in the Group Search Base and Group Search Filter fields, and then click Search.
    6. Click and drag the applicable group from the LDAP Group Search Results list to the LDAP Group column of the mapping table for the corresponding Loftware Group.

      Tip: An LDAP group can only be mapped to one Loftware group, but a Loftware group can be mapped to multiple LDAP groups.

    7. Repeat for all Loftware to LDAP groups you want to map.
  5. Click Save .

To set up SSO with LDAP, see Configure Single Sign-On (SSO) Using Security Assertion Markup Language (SAML).

To set a specific default domain for users signing in to Loftware Enterprise SP, see Set a Default LDAP Domain in the Loftware Enterprise SP Installation and Configuration Guide.