The purpose of this documentation is to explain how authentication via an LDAP directory works. This feature results in the addition of one or more external connections to the ServiceNav application.
It is possible to define one LDAP directory per company/site. The activation of a directory service is in addition to the local authentication.
Authentication with an LDAP directory requires communication between the ServiceNav monitoring platform and the LDAP directory; therefore, this functionality is not available on the ServiceNav SaaS platform.
To add a connection to an LDAP directory, go to the "Administration" section and then to the "External connections" > "LDAP connection" menu.
LDAP server definition
1/ To enable authentication with an LDAP directory, select "Yes". Once "Yes" has been selected, the above form will appear.
2/ You must then configure the connection to the server hosting the LDAP directory.
- Domain: must match the domain of the directory and will be used to create user accounts. The login will be in the following form :
- Fill in the IP address or DNS name of the server.
- Specify the port the directory service is listening on.
- If you want to use a secure connection and if the directory supports SSL, then choose the "Yes" option.
3/ This section holds the attributes of the LDAP directory user object. To know what to provide here you have to look at your owndirectory configuration. The default values are the most common.
4/ In order to be able to connect to the directory, we need a user with read rights. It will be used to search for users to add and for the connection test.
5/ This parameter is used to filter the results contained in the directory. It is predefined to filter users with a given e-mail address. You can modify it if necessary.
6/ Fill in the maximum waiting time allowed for establishing a connection with the directory.
7/ You can activate the " debug " mode to control the error output detail level.
1/ Click on "Test Connection" to check that the configuration is correct.
2/ Results of the different parts of the AD configuration.
3/ Number of users retrieved during the connection test.
4/ Information on one of the retrieved users (login, name, surname and email). It is possible that the LDAP directory does not contain all this data. In this case, there will be no result in the rightmost column.