LDAP integration #1864 | Support Center

huntethan89 created 7 years ago

Hi, What should we needed to implement LDAP integration. i have done what is written in this link : <a class="postlink" href="https://www.aspnetzero.com/Documents/Development-Guide#enabling-ldap-active-directory-authentication">https://www.aspnetzero.com/Documents/De ... entication</a> , but in settings -> user management it shows only email confirmation option. i am attaching screenshot with this. Please tell me what are other things i need to done to implement LDAP.

7 Answer(s)

0

ismcagdas created 7 years ago
Support Team

Hi,

Ldap settings should be in the tenant settings page. Can you login with a tenant admin user and check that ?
0

huntethan89 created 7 years ago

Hi, yes its working. Are we not allowed to c hange password from applicaiton ? What happen if we change password from windows?
0

ismcagdas created 7 years ago
Support Team

You can not change the active directory password but it should still work if you use new password dor login.
0

huntethan89 created 7 years ago

Hi , if we change passwords from windows. the application allows it login from new password as well as new password. when a LDAP user logs in nothing is visible to him. No Roles assign to him. How to bind windows roles to application roles. So that is get access of particular things. Thanks
0

ismcagdas created 7 years ago
Support Team

Hi,

I'm not sure this is a good thing or not. If you really want to do this, you can create your own LdapAuthenticationSource, get user's roles from Active Directory and assign new roles to user. <a class="postlink" href="http://aspnetboilerplate.com/Pages/Documents/Zero/User-Management#ldapactive-directory">http://aspnetboilerplate.com/Pages/Docu ... -directory</a>

Of course, you need to sync/match roles in AD with your AspNet Zero application somehow.
0

huntethan89 created 7 years ago

Hi, lets assume we created a user group named technician user in system. also we created role name technician in our application then we have to map these two roles. But, how can we retrieve user group from LDAP ?

Thanks
0

ismcagdas created 7 years ago
Support Team

Hi,

I'm not sure how to do that but I think you can find something on the internet. With a quick serch I have found this example <a class="postlink" href="http://stackoverflow.com/questions/8474718/listing-all-active-directory-groups">http://stackoverflow.com/questions/8474 ... ory-groups</a>.

Of course, you will need a privileged user account to search for all or some of the AD groups.

Have an answer to this question? Log in and write your answer.