Reference Guide
...
LDAP/Active Directory Integrat...

LDAP/AD Integration

Kron PAM allows LDAP/Active Directory integration with select integration options.

LDAP Integration
LDAP Integration
๏ปฟ
  1. Click the Integration Optionsโ€™ Edit button.
  2. Select the desired integration option and click Save.
  3. Click the Synchronize All button to import LDAP users.

Delete Empty User Groups: If this option is selected, the empty LDAP user groups are deleted from Kron PAM.

Allow Duplicated Email: Allows user import even if the users have the same email address. If this option is not selected, only one user with a unique email address will be imported.

Import Users With Domain Name: This value can be set as TRUE or FALSE. If the value is TRUE, the users of the domain name SingleConnect\testuser or testuser@Singleconnect.com are imported. If the parameter is set as TRUE, the userPrincipalName value should be added in the LDAP Definition.

Separator: The value can be set as โ€œ\โ€ or โ€œ@โ€. The preferred separator is used to import users from the AD with the domain name. (Example: SingleConnect\testuser or testuser@Singleconnect.com). The default value is "\".

Import User Groups With Domain Name: This value can be set as TRUE or FALSE. If the value is TRUE, the user groups with the domain name SingleConnect\TestuserGroup are imported.

Parameter Name

Sample Parameter Value

sc.integration.ldap.baseDN_0

DC=SingleConnectlab,DC=net

sc.integration.ldap.baseDN_1

DC=SingleConnect,DC=com

sc.integration.ldap.domain_0

SingleConnectlab.net

sc.integration.ldap.domain_1

SingleConnect.com

sc.integration.ldap.eid_0

Administrator@SingleConnectlab.net

sc.integration.ldap.eid_1

Admin@SingleConnect.com

sc.integration.ldap.group.import.with.domain.name

TRUE

sc.integration.ldap.group.search.phrase_0

(objectClass=group)

sc.integration.ldap.group.search.phrase_1

(objectClass=group)

sc.integration.ldap.password_0

?

sc.integration.ldap.principal_1

?

sc.integration.ldap.source.name_0

Ldap

sc.integration.ldap.source.name_1

ldap2

sc.integration.ldap.url

ldap://10.20.30.40#ldap://10.20.30.41

sc.integration.ldap.user.additional.attributes_0

userPrincipalName

sc.integration.ldap.user.additional.attributes_1

userPrincipalName

sc.integration.ldap.user.import.with.domain.name

TRUE

sc.integration.ldap.user.search.phrase_0

(objectClass=user)

sc.integration.ldap.user.search.phrase_1

(objectClass=user)

After defining the above parameters, apply the steps outlined in sections or Manually Trigger LDAP Sync Job๏ปฟ.