Differences

This shows you the differences between two versions of the page.

--- ldap [2022_01_07 11:26] – [LDAP Integration] dan
+++ ldap [2024_04_22 21:30] (current) – external edit 127.0.0.1
@@ Line 3: / Line 3: @@
 #### Last Updated January 7, 2022
-The File Fabric supports integration with directory services through the LDAP and SAML protocols providing authentication and authorization services including single-sign-on as well as identity and role synchronization.
+The Access Anywhere supports integration with directory services through the LDAP and SAML protocols providing authentication and authorization services including single-sign-on as well as identity and role synchronization.
-This document describes integration with LDAP. For SAML see [[:organisationcloud/saml|SAML Integration]]. More information at [[iam]].
+This document describes integration with LDAP. For SAML see [[:admin/saml|SAML Integration]]. More information at [[iam]].
-LDAP integration is supported for:
- * Enterprise File Fabric
- * SaaS (US and EU)
 This document describes configuration via LDAP for:
@@ Line 16: / Line 11: @@
  * Microsoft Active Directory
  * Azure AD Domain Services
 <WRAP center round important 100%>
@@ Line 35: / Line 29: @@
 If you need to connect to:
- * ADFS (Active Directory Federation Services) - see [[organisationcloud/saml|SAML integration]]
+ * ADFS (Active Directory Federation Services) - see [[admin/saml|SAML integration]]
- * Azure Active Directory - see [[organisationcloud/saml|SAML integration]]
+ * Azure Active Directory - see [[admin/saml|SAML integration]]
- * Active Directory without secure LDAP - see the [[:organisationcloud/activedirectory/activedirectoryintegration|File Fabric Active Directory Proxy]]
+ * Active Directory without secure LDAP - see the [[:admin/activedirectory/activedirectoryintegration|Access Anywhere Active Directory Proxy]]
 ### Choose Auth System Type
@@ Line 43: / Line 37: @@
 For any LDAP directory service choose **Active Directory via LDAP**.
-{{ :organisationcloud:activedirectory:activedirectoryintegration:ldap_auth.png?400 |}}
+{{ :admin:activedirectory:activedirectoryintegration:ldap_auth.png?400 |}}
@@ Line 61: / Line 55: @@
 ```
-In case EFF can not connect to the first AD, next one will be tried.
+In case NAA can not connect to the first AD, next one will be tried.
 __LDAP Server Port__ - Can leave the default (port 389) if the Connection Encryption is none or TLS. Use port **636** for SSL. Or other port if you are using non-standard ports for your AD environment.
@@ Line 75: / Line 69: @@
 ==== User Import Settings ====
-The next three boxes should be checked if you want the File Fabric to automatically create new users and roles/groups when a user logs in and their account and/or groups do not exist in the File Fabric.
+The next three boxes should be checked if you want Access Anywhere to automatically create new users and roles/groups when a user logs in and their account and/or groups do not exist in Access Anywhere.
 If you do not check these, you must import the Users and Roles you want to have access to the system.
@@ Line 82: / Line 76: @@
 ==== User Directory Settings ====
-The next section will describe how your directory defines the users we will use in the File Fabric.
+The next section will describe how your directory defines the users we will use in Access Anywhere.
 {{::ldap_ad_user_connsettings.png?600|}}
@@ Line 90: / Line 84: @@
 __Additional Custom User Object Classes__ - If you have additional classes which represent the users on your system, you can enter them here in a comma separated list. Standard AD installations will leave this blank.
-__Login Field__ - This defines the attribute which SME will use for the SME Login attribute in the File Fabric. Standard AD installations should use either sAMAccountName or userPrincipalName
+__Login Field__ - This defines the attribute which NAAwill use for the NAALogin attribute in Access Anywhere. Standard AD installations should use either sAMAccountName or userPrincipalName
-__Use Customer User Login Field__ - If Checked then you can select a custom field for the SME Login. Standard AD installations will leave this blank.
+__Use Customer User Login Field__ - If Checked then you can select a custom field for the NAALogin. Standard AD installations will leave this blank.
-__Unique User Attribute__ - This defines which field will be used as the unique user ID with the file fabric. Standard AD installations should use either sAMAccountName or userPrincipalName.
+__Unique User Attribute__ - This defines which field will be used as the unique user ID with Access Anywhere. Standard AD installations should use either sAMAccountName or userPrincipalName.
-__User Name Field__ - This defines which field will be used for the SME User Name attribute. Standard AD installations should use displayName.
+__User Name Field__ - This defines which field will be used for the NAAUser Name attribute. Standard AD installations should use displayName.
-__Use Custom User Name Field__ - If Checked then you can select a custom field for the SME User Name. Standard AD installations will leave this blank.
+__Use Custom User Name Field__ - If Checked then you can select a custom field for the NAAUser Name. Standard AD installations will leave this blank.
-__Use Custom User Email Field__ - If Checked then you can select a custom field for the SME email. Standard AD installations will leave this blank.
+__Use Custom User Email Field__ - If Checked then you can select a custom field for the NAAemail. Standard AD installations will leave this blank.
 ==== Group Directory Settings ====
-The next section will describe how your directory defines the groups we will use for the roles within the File Fabric.
+The next section will describe how your directory defines the groups we will use for the roles within Access Anywhere.
 {{::ldap_ad_group_connsettings.png?600|}}
-__Group (Role) id Field__ - This will define which field to use in the directory to create the Roles within the File Fabric. Standard AD installations will select cn.
+__Group (Role) id Field__ - This will define which field to use in the directory to create the Roles within Access Anywhere. Standard AD installations will select cn.
-__Restrict import of users from the following groups__ - Enter any group DNs for groups within your directory which you want to limit which users can access the File Fabric.
+__Restrict import of users from the following groups__ - Enter any group DNs for groups within your directory which you want to limit which users can access Access Anywhere.
 __Group(Role) Object Class__ - This defines the object class the directory users for group objects. Standard AD installations will select group.
@@ Line 116: / Line 110: @@
 __Custom Group (Role) Object Classes__ - Here you can add additional classes which represent groups in your Directory, in a comma separated list. Standard AD installations will leave this blank.
-__Role Name Field__ - This defines which field will be used to set the Group name in the File Fabric. Standard AD installations will use cn.
+__Role Name Field__ - This defines which field will be used to set the Group name in Access Anywhere. Standard AD installations will use cn.
-__Use Custom Role Name Field__ - If checked then you will be able set a custom field name to be used for the File Fabric group Names. Standard AD installations will leave this blank.
+__Use Custom Role Name Field__ - If checked then you will be able set a custom field name to be used for Access Anywhere group Names. Standard AD installations will leave this blank.
 ==== Auto-Config Provider (Optional) ====