How to Set Up a User for LDAP Authentication

Available to users with User Manager or Admin privileges.

Set up LDAP authentication for users once a directory server is configured for user authentication.

LDAP authentication must be switched on for users in the Users module to allow them to log in with their directory server credentials to LearningSpace Enterprise.

LDAP authentication can be switched on for one user at a time or for a group of selected users:

Switch On LDAP for a User

  1. Open a user for editing.

  2. Check Authenticate by LDAP server in the Account tab.

Switch on LDAP for Multiple Users

  1. Select users from the Users panel on the right.

    Click the "All Users" option on the left to display all users registered in your system, or select a group to filter the users.

    Use the select-all checkbox in the Users panel to select all users at once.

  2. Click Open on the right.


    The 'Edit Multiple Users' pop-up will open, where you can manage the settings of your selected users all at once.

  3. At 'Reset authentication method to:' open the drop-down.

  4. Select 'LDAP server authentication:


  5. Once LDAP Authentication is enabled for users, fill in the Authentication ID in their profiles. LDAP Login Settings in the Directory Access Settings tab determine the required Authentication ID for users. 

If the Authentication ID has been set to 'Email' in the Directory Access Settings, no additional configuration is required for the user's profile.

When LDAP Authentication is enabled, users cannot log in with their LearningSpace email and password or modify their credentials, even if they have been added to their profiles. For the same reason, an email address is not required in a user's LearningSpace Enterprise account if LDAP Authentication is used.

6. Open each user for editing.

  1. If you set up a full DN sequence for authentication:

  2. Provide the user's LDAP ID stored on your directory server in the corresponding field if the Authentication ID has been set to 'LDAP ID' in the Directory Access Settings tab. 

     

  3. If the Authentication ID has been set to' UCID' in the Directory Access Settings tab, provide the user's UCID (Unique Custom ID) stored on your directory server in the corresponding field. 


      3.  If you set up the Resolve samAccountName method for authentication, provide the user's samAccountName:
               

Troubleshooting: Directory Server Is Down

If your directory server is down for any reason, temporarily withdraw LDAP authentication from users and allow them to log in with their LearningSpace Enterprise credentials.

Related pages:

For further information, visit our User Manager, System Manager, and System - How to pages.