Fortinet black logo

Administration Guide

Home FortiProxy 7.0.0 Administration Guide
7.0.0
7.4.3
7.4.2
7.4.1
7.4.0
7.2.10
7.2.9
7.2.8
7.2.7
7.2.0
7.0.17
7.0.0
2.0.0
1.2.0
1.1.0
1.0.0

Create or edit an LDAP server

Create or edit an LDAP server

To add a new LDAP server:

  1. In the LDAP server list, select Create New from the toolbar. The Create LDAP Server window opens.

  2. Configure the following:

    Name

    Enter the name that identifies the LDAP server on the FortiProxy unit.

    Server IP/Name

    Enter the domain name or IP address of the LDAP server.

    Server Port

    Enter the TCP port used to communicate with the LDAP server. By default, LDAP uses port 389.

    If you use a secure LDAP server, the default port changes if you select Secure Connection.

    Common Name Identifier

    Enter the common name identifier for the LDAP server. The maximum number of characters is 20.

    Distinguished Name

    Enter the base distinguished name for the server using the correct X.500 or LDAP format. The unit passes this distinguished name unchanged to the server. The maximum number of characters is 512. You can also select Browse to contact and retrieve the specified LDAP server.

    Bind Type

    Select the type of binding for LDAP authentication.

    • Simple: Connect directly to the LDAP server with user name/password authentication.

    • Anonymous: Connect as an anonymous user on the LDAP server and then retrieve the user name/password and compare them to given values.

    • Regular: Connect to the LDAP server directly with user name and password and then receive acceptance or rejection based on search of given values. Enter the user name and password of the user to be authenticated in the Username and Password fields.

    Secure Connection

    Enable to use a secure LDAP server connection for authentication.

    Protocol

    If you enabled Secure Connection, select a secure LDAP protocol to use for authentication, either STARTTLS or LDAPS.

    Depending on your selection, the server port changes to the default port for the selected protocol:

    • STARTTLS: port 389

    • LDAPS: port 636

    Certificate

    If you enabled Secure Connection,select a certificate to use for authentication from the list.

    Test Connectivity

    Select Test Connectivity to test if the LDAP server can be contacted.

  3. Click OK to create the new LDAP server.

To edit an LDAP server:

  1. Select the LDAP server you want to edit and then click Edit from the toolbar or double-click on the address in the address table. The Edit LDAP Server window opens.

  2. Edit the server information as required and click OK to apply your changes.

Previous
Next

Create or edit an LDAP server

To add a new LDAP server:

  1. In the LDAP server list, select Create New from the toolbar. The Create LDAP Server window opens.

  2. Configure the following:

    Name

    Enter the name that identifies the LDAP server on the FortiProxy unit.

    Server IP/Name

    Enter the domain name or IP address of the LDAP server.

    Server Port

    Enter the TCP port used to communicate with the LDAP server. By default, LDAP uses port 389.

    If you use a secure LDAP server, the default port changes if you select Secure Connection.

    Common Name Identifier

    Enter the common name identifier for the LDAP server. The maximum number of characters is 20.

    Distinguished Name

    Enter the base distinguished name for the server using the correct X.500 or LDAP format. The unit passes this distinguished name unchanged to the server. The maximum number of characters is 512. You can also select Browse to contact and retrieve the specified LDAP server.

    Bind Type

    Select the type of binding for LDAP authentication.

    • Simple: Connect directly to the LDAP server with user name/password authentication.

    • Anonymous: Connect as an anonymous user on the LDAP server and then retrieve the user name/password and compare them to given values.

    • Regular: Connect to the LDAP server directly with user name and password and then receive acceptance or rejection based on search of given values. Enter the user name and password of the user to be authenticated in the Username and Password fields.

    Secure Connection

    Enable to use a secure LDAP server connection for authentication.

    Protocol

    If you enabled Secure Connection, select a secure LDAP protocol to use for authentication, either STARTTLS or LDAPS.

    Depending on your selection, the server port changes to the default port for the selected protocol:

    • STARTTLS: port 389

    • LDAPS: port 636

    Certificate

    If you enabled Secure Connection,select a certificate to use for authentication from the list.

    Test Connectivity

    Select Test Connectivity to test if the LDAP server can be contacted.

  3. Click OK to create the new LDAP server.

To edit an LDAP server:

  1. Select the LDAP server you want to edit and then click Edit from the toolbar or double-click on the address in the address table. The Edit LDAP Server window opens.

  2. Edit the server information as required and click OK to apply your changes.

Previous
Next