MeshCentral - LDAP Integration

Name: MeshCentral - LDAP Integration
Uploaded: Premiered Aug 17, 2022
Duration: 1501 s

MeshCentral5.06K subscribers

5.1K views

Premiered Aug 17, 2022

25:01

MeshCentral can integrate with a LDAP (Lightweight Directory Access Protocol) so that your existing list of users in an organization can instantly get access to a MeshCentral instance without having to create a new account. In this video we look at configuring MeshCentral's LDAP capability so that users can login and information about the users including the user's picture are transferred to the MeshCentral instance. More information at: https://meshcentral.com 00:00 - Introduction 00:20 - What is LDAP? 01:06 - LDAP provides user authentication and user information 03:10 - MeshCentral config.json for LDAP 09:08 - Using an LDAP browser to see the directory 11:14 - Looking at user fields within the directory 12:42 - Merging LDAP attributes into MeshCentral 13:52 - Default config.json LDAP values 14:55 - Demonstration setup showing LDAP debug messages 15:42 - My demonstration config.json 17:05 - User login demonstration 18:15 - Debugging a LDAP user login 19:17 - Changing the config.json 20:24 - Trying user login with with a wrong password 21:15 - Trying wrong LDAP credentials 21:46 - Saving LDAP user to file for debugging 24:20 - Conclusion Music | "I Need You" by LiQWYD Here is a sample config.json for LDAP: { "settings": { "Cert": "sample.com", "Port": 443, "RedirPort": 80 }, "domains": { "": { "title": "MeshCentral", "auth": "ldap", "_ldapUserName": "{{{givenName}}} {{{sn}}}", "_ldapUserBinaryKey": "objectSid", "_ldapUserEmail": "mail", "_ldapUserRealname": "{{{givenName}}} {{{sn}}}", "_ldapUserPhoneNumber": "telephoneNumber", "_ldapUserImage": "thumbnailPhoto", "_ldapSaveUserToFile": "C:\\tmp\\ldapuser-save.txt", "_ldapUserGroups": "memberOf", "_ldapUserRequiredGroupMembership": [ "CN=Domain Admins,CN=Users,DC=vprodemo,DC=com" ], "_ldapSyncWithUserGroups": { "filter": [ "CN=Enterprise Admins" ] }, "ldapOptions": { "url": "ldaps://192.168.2.234:636/", "tlsOptions": { "rejectUnauthorized": false }, "bindDN": "cn=administrator,cn=users,dc=vprodemo,dc=com", "bindCredentials": "myPassword", "searchBase": "cn=users,dc=vprodemo,dc=com", "searchFilter": "(name={{username}})", "reconnect": true } } } }

Download

0 formats

No download links available.