Quick LDAP/AD Integration
To integrate an LDAP/AD with Kron PAM:
- Log in to the Kron PAM Web GUI.
- Navigate to Ldap Manager.
- Set the configuration parameters, as described in the LDAP Configuration Parameters table below.
- Click the Save button and Synchronize All to import users and user groups.
- (Optional) Repeat the steps above for additional LDAP configurations.
When Active Directory/LDAP parameters are applied, the TACACS+ and RADIUS services are restarted.
Parameter | Explanation | Example |
|---|---|---|
Ldap Source Name | Name assigned to the source LDAP. |  |
URL | The Active Directory/LDAP hostname/IP address, port number, and LDAP/LDAPS protocol. | ldap://10.10.10.10:389, ldaps://10.10.10.20:636 |
Domain | The domain name of the Active Directory/LDAP. | testlab.net |
Username | A username to connect to the Active Directory/LDAP server to get the user list information. | test@testlab.net |
Password | Password to connect to the Active Directory/LDAP server. |  |
Base DN | The base DN subtree used to search users and groups. | DC=testlab,DC=net |
Principal Key | Security principal used to bind to the LDAP server. | ? |
Group Search Phrase | Search filter to find user groups in the Active Directory/LDAP. | (objectClass=group) |
User Search Phrase | Search filter to find users in the Active Directory/LDAP. | (objectClass=user) |
Delete Empty Groups | If it is selected, empty Active Directory/LDAP server user groups are deleted in Kron PAM. |  |