Active Directory Integration with SaaS

Active Directory Integration with SaaS 

 

Description:

The work is to configure a direct LDAPS user sync between Claro Web server and client’s AD server. (not SSO)

Pre-conditions:

- Claromentis to provide web server IP address(es)

- Client to open LDAPS ports to external incoming traffic (636, 3269) from web server IP(s)

- Client to ensure that they have AD user account which can read all user LDAP attributes which they want to sync and the memberOf field

- Client to decide which security groups or OU are to be used for user authentication

- Cient to ensure that there is a valid SSL cert on AD server (not self-signed)

Steps to complete:

Client to login using their admin account and follow the guidelines of LDAP tool in Admin > System > LDAP

We estimate that given all preconditions are complete prior, this work should take no longer than 1 hour to set up.

Constraints:

- No proxy servers, direct connection only

- Only LDAPS method is supported for the purposes of user sync

Troubleshooting:

If there are issues with setting up the LDAPS connection, please contact your Claromentis project manager to seek assistance

Downtime:

none

Resources required:

Client tech resource

Last modified on 5 May 2022 by Hannah Door
Created on 25 May 2018 by Stas Dreiling

Was this helpful?  

Share