Configure a Microsoft Active Directory LDAP server
Configure N-able N-central to communicate with multiple Active Directory servers at the Service Organization level, enabling technicians to access N-able N-central, and Active Directory servers at the Customer level so customers can sign in to N-able N-central.
Mobile device management does not integrate with Active Directory.
- Click Administration > User Management > SSO Providers.
- Click Add > Microsoft Active Directory.
- Enter a descriptive Name for the Active Directory server.
- Enter the name of the Domain where the server is located.
- In the Server 1 Host field, type the IP address or FQDN of the Active Directory server.
- In the Server 2 Host field, type the IP address or FQDN of the fallback server if one is configured.
- Select the Primary Server.
- The Port should be left at the default 389. If the Active Directory server is over SSL, enter 636.
- To connect to the LDAP server using a secure sockets layer, select SSL Enabled.
Self Signed Certificates
SSL certificates on LDAP servers cannot be self-signed. You will need to configure your LDAP server to use certificates with the CA property set (Root CA Certificates). - In the Base DN field, enter the Distinguished Name of the OU or CN where the Active Directory users exist.
- In the Search Filter field, enter the search criteria.
- To connect to the LDAP server anonymously, select Anonymous Bind.
- If you did not select to connect anonymously, enter the name of the Domain Administrator Account that N-able N-central uses to sign in to the Active Directory server in the format
domain\username
and enter the Password. - Click Test Connection to confirm that N-able N-central can successfully communicate with the Active Directory server
- Click Save.
cn=users,dc=test,dc=com
(&(objectclass=user)(displayName=Smith))
By default, Active Directory servers do not allow anonymous access. Only select this option if you have enabled Anonymous access on your Active Directory server.
The LDAP server configuration appears in the list of LDAP servers and N-able N-central establishes a connection to the server. You can now create user accounts for Active Directory users.
For large user directories, enable the Virtual List View on your LDAP server to ensure N-able N-central loads the entire user list . For more information, see Searching with the LDAP VLV Control on the Microsoft MSDN site.