---
title: "Method: LDAP or AD"
slug: "method-ldap-or-ad"
updated: 2025-02-20T16:56:36Z
published: 2025-02-20T16:56:36Z
---

> ## Documentation Index
> Fetch the complete documentation index at: https://docs.zpesystems.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Method: LDAP or AD

1. Enter **Base** (root DN or a sublevel DN – highest point used to search for users or groups). ![](https://cdn.document360.io/763c5fb1-b9af-4ccd-9ad6-cf28ae4cd5a3/Images/Documentation/auth3.png)
2. Select/unselect **Authorize users authenticated with ssh public key** checkbox (default: disabled).
3. On **Secure** drop-down, select one (On, Off, Start_TLS) (default: Off).
4. Select/unselect **Global Catalog Server** checkbox (if enabled, uses an Active Directory Global Catalog Server).
5. Enter **LDAP Port** (or accept "default").
6. Enter **Database Username, Database Password** and **Confirm Password.**
7. Enter **Login Attribute** (contains username - for AD, default: sAMAccountName).
8. Enter **Group Attribute** (group identifier - for AD, default: memberOf).
9. Enter **Search Filter.**
10. Select/unselect **Search Nested Groups (AD only)** checkbox (default: disabled).
11. Enter **Group Base**.

> [!NOTE]
> Example: OpenLDAP Configuration
> 
> Status: True; Fallback if denied access: True; Remote Server: 192.168.1.1; Base: dc=zpe, dc=net; Secure: Off; Global Catalog Server: False; Database Username: cn=admin, dc=zpe, dc=net; Login Attribute: cn; Group Attribute: Member, UID

**Example: Active Directory Configuration**

Status: True; Fallback if denied access: True; Remote Server: 192.168.1.1; Base: dc=zpesystems, dc=com; Secure: Start TLSl; Global Catalog Server: True; Database Username: cn=Administrator, cn=Users, dc=zpesystems, dc=com; Login Attribute: sAMAccountName; Group Attribute: memberOf