Documentation Center

Configuring LDAP

Non-administrative users can log in to SDL ETS via a dedicated username and password, or via an Active Directory (LDAP) integration. For the latter case, a LDAP server must be configured, so that user credentials are properly matched in the directory.

About this task

Administrators can set up LDAP groups to control access to SDL ETS in terms of who can log in, and who can be an SDL ETS admin user. Once LDAP is configured properly in the SDL ETS Web GUI, SDL ETS user accounts are automatically created whenever a valid LDAP user logs into SDL ETS with their LDAP username and password.

You need to have an ETS administrator user account to access the following operations.

Procedure

  1. Launch the Web GUI.
  2. Log in using an ETS administrator account.
  3. Navigate to Manage > LDAP.
  4. In the upper right-hand corner, select Edit.
  5. In the Connection section, specify how to make a connection to your LDAP server:
    1. Enter in the Host and Port of your LDAP server.
    2. (Optional) Select the Use TLS/SSL checkbox if your LDAP server uses TLS for authentication.
  6. In the Search section, specify how LDAP searches are performed:
    1. Specify the Search Base for querying LDAP for groups and users.
    2. Specify the Bind User for Search option, indicating whether your LDAP server allows any LDAP user to do a search or only a specific user can. If you choose Only this LDAP user can do this search, enter the Bind User Username and Bind User Password.
  7. In the Login section, specify who can login to ETS and who has an administrator role:
    1. (Optional) Choose one ore more Login Groups by selecting + Add.
      If you chose None for Bind User for Search, you will need to first specify a Test Username and Test Password in the Test LDAP Configuration section. After selecting + Add, you will be shown all the groups found under the Search Base you specified earlier. Choose the group you wish to add as a login group.
    2. (Optional) Choose one or more Admin Groups by following the same steps as the ones for Login Groups above.
  8. (Optional) In the Advanced section, configure advanced search settings.
    Hint: use the tooltips in the UI for more information about these advanced settings.
  9. Select Save.
  10. Toggle the Enable LDAP switch to enable LDAP.

What to do next

Verify that your LDAP configuration are setup correctly.