MeshCentral - LDAP Membership Groups

In this video we look more in depth at MeshCentral support for LDAP. We look at how you can restrict which users can login to the MeshCentral instance using LDAP membership groups, look at how MeshCentral can sync LDAP groups with MeshCentral user groups and how you can restrict what LDAP groups are sync'ed with MeshCentral user groups. More information at: https://meshcentral.com 00:00 - Introduction 01:06 - Demonstration setup 01:40 - Running LDAP debug mode 02:28 - Membership groups using an LDAP browser 03:38 - config.json LDAP configuration 04:15 - LDAPUserGroups setting 05:30 - LDAPUserRequiredGroupMembership setting 06:35 - Demonstrating not being part of a required group 07:32 - Demonstrating not part of a required group 08:15 - Granting access based on LDAP groups 10:25 - New MeshCentral LDAP user groups 11:29 - Setting up LDAP group synchronization 12:22 - Demonstration of LDAPSyncWithUserGroups 13:48 - Login with existing device groups 14:44 - Managing users in device groups 16:05 - Limiting LDAP group synchronization 17:35 - Demonstration of LDAP group sync limitation 19:45 - Conclusion Music | "I Need You" by LiQWYD Sample config.json, this is settings of a domain. "": { "title": "MeshCentral", "auth": "ldap", "LDAPUserName": "gecos", "LDAPUserKey": "uid", "LDAPUserEmail": "otherMail", "LDAPUserGroups": "memberOf", "LDAPUserRequiredGroupMembership": [ "CN=Domain Admins,CN=Users,DC=sample,DC=com" ], "LDAPSyncWithUserGroups": { "filter": [ "CN=Domain Admins" ] }, "LDAPOptions": { "URL": "ldap://1.2.3.4:389", "BindDN": "CN=svc_meshcentral,CN=Users,DC=meshcentral,DC=local", "BindCredentials": "Password.1", "SearchBase": "DC=meshcentral,DC=local", "SearchFilter": "(sAMAccountName={{username}})" }, }