Skip to main content

LDAP and Active Directory Authentication

SyncNow provides robust support for multiple LDAP and Active Directory (AD) connections, allowing seamless integration with various directory services for user authentication. This ensures that user credentials can be verified against existing organizational directories before checking SyncNow's internal user database.

Multiple Directory Connections

SyncNow supports connections to multiple Active Directories, enabling comprehensive user authentication across different domains and directories. When a user attempts to log in, SyncNow will search through all configured directory connections in the order they are defined. If the user is not found in any of these directories, the system will then check the internal users' database.

Enabling LDAP and Active Directory Authentication

To enable LDAP or Active Directory authentication, navigate to the Authentication Providers page:

Authentication Providers

  1. Enable LDAP/Active Directory Authentication

    • On the Authentication Providers page, toggle the switch to enable LDAP or Active Directory authentication.

  2. Add a New Directory Connection

    • Press the "Add Connection" button to configure a new directory connection.

Configuring a Directory Connection

Each connection to an LDAP or Active Directory is defined with specific details to ensure accurate and secure authentication. Follow these steps to configure a new connection:

  1. Connection Name

    • Description: A unique name for the directory connection.
    • Example: "Corporate AD Server"

  2. Host/IP Address

    • Description: The hostname or IP address of the Active Directory domain controller.
    • Example: "ad.example.com" or "192.168.1.1"

  3. Username and Password

    • Description: The credentials used to access the Active Directory. These should have sufficient permissions to search for user objects.
    • Example:

  4. Search Scope

    • Description: Defines the scope of the search for user objects. Can be set to either "One Level" (search only the immediate children of the search base) or "Subtree" (search the entire subtree).
    • Example: "Subtree"

  5. Search Base

    • Description: The base distinguished name (DN) from which the search for user objects will begin.
    • Example: "OU=Users,OU=IT,DC=Example,DC=com"
    • Additional Option: A button to add multiple search bases if necessary.

  6. Search Filter

    • Description: A filter to apply to the search to refine results to specific types of objects, such as users.
    • Example: "(objectClass=person)"

  7. Search Attribute

    • Description: The attribute within the directory to be used for matching the username during authentication.
    • Example: "userPrincipalName"

Managing Directory Connections

Each configured connection can be managed from the Authentication Providers page:

  • Enable/Disable a Connection

    • Description: Use the switch next to each connection to enable or disable it without removing the configuration.

  • Edit a Connection

    • Description: Click the "Edit" button next to a connection to update its details. This allows you to modify any of the configuration settings as required.

  • Delete a Connection

    • Description: Click the "Delete" button to remove a directory connection from SyncNow. This action is irreversible and will completely remove the configuration details.
LDAP Auth Settings