...
In Search Filter, type sAMAccountName={0}. {0} is replaced with the username.
- In case there's a need in a Manager path to search the Active Directory, enter the full distinguishedName of the user that that will be used to search the active directory (go to the AD explorer, right click the user > properties and copy the user's distinguished path. For example: CN=USER_NAME,CU=Admins,OU=Users,OU=MyBusiness,DC=xpolog,DC=local) and its password.
- In User path, type USER_DOMAIN\{0}, where USER_DOMAIN is the domain of your users (for several domains use a semicolon separated list USER_DOMAIN_1\{0};USER_DOMAIN_2\{0};...USER_DOMAIN_N\{0}).
- In Unique id attribute, type sAMAccountName.
- In Display name attribute,type displayName.
- In Groups attribute, type memberOf.
- Click save.
The LDAP configuration is saved.
Configuration example:
Verification:
After you have completed the above steps and saved them. Try to login to XpoLog using the LDAP/AD credentials, if you're logged in successfully then the authentication passed properly.
The next phase is to verify that XpoLog was able to retrieve the Groups of the user from the Active Directory, to verify it go to the XpoLog audit log and look for the phrase. "get the following groups" in it. If you see there a list of groups then you are done and verified that XpoLog is able to authenticate users and retrieve their groups from the Active Directory.
The next phase will be to add relevant groups to XpoLog and assign security policies on them.