Adding new LDAP/LDAPs directory

Follow the below-recommended steps to add a new directory store in Sectona PAM:

• Go to Configuration on the top navigation bar. 

• Select AD & Directory Store option from the left sidebar.

• Click on +Add AD & Directory Store and input data in the form.

• Provide a unique name to identify the directory name in field Directory Name.

• Select the type of directory you are integrating. The system supports Window Active Directory or Sectona directory.

• Select the Directory Store Type. System supports communication with LDAP and LDAPS method.

• Provide an IP address/hostname of the directory store.

• Specify the base domain name of the directory store. (eg DC=LOCALAD,DC=COM )

• Specify the domain name of the server.

• Provide port no. and change the port no. if you are using any custom ports. ( Default port for LDAP is 389 and LDAPS is 636)

• Specify the username for server-side authentication. The username should have sufficient privileges to with ‘Read’ permission.

• The same username can be used as a management account for AD privilege account password change. Additional privileges are required to be enabled such as on User Object set (check) permissions - ‘Reset Password’, ‘Read pwdLastSet’, ‘Write pwdLastSet’, ‘Read lockOutTime’ and ‘Write lockOutTime’.

• Specify the password for server-side authentication.

• Tick the Active checkbox to activate the configuration.

• Click on Save and your new directory will be created.

Related How-to Articles

• Add LDAP and LDAPS Directories
• How to add a Radius Directory?