Note: make sure that you configure a proper port for the secure LDAP connection - use port 636 if you're using the default LDAP settings
Default ports are 389/636 for insecure/secure connections.
For Active Directory (AD), you should consider using the Global Catalog
(ports 3268/3269), especially if you have an AD forest with multiple domains.
A "bind DN" format used for the LDAP bind operation intended to simplify CodeScene's users login (i.e. allow them to use shorter usernames). Use the {username} placeholder to insert the actual user login.
For Active Directory it's usually a UPN-like format:
{username}@mycompany.com
You could also use an old NETBIOS-style format: MYCOMPANY\{username}
For generic LDAP server you have to use a full DN format, for example:
CN={username},OU=Users,DC=mycompany,DC=com
Using the uid attribute (instead of Common Name) as a username
is also a common choice: uid={username},OU=Users,DC=mycompany,DC=com
You can leave this empty if your users always use a full bind DN required by your LDAP server.
This is the root for LDAP search queries for data about your users and groups.
By default, CodeScene searches all groups of given user recursively, not just the direct groups (as per the memberOf LDAP attribute). This search can take a lot of time, especially for large LDAP installations and users with lots of groups. If you only need the direct groups or you dont use groups at all you can safely enable this option to speed up the login process.
Match LDAP users/groups with CodeScene roles. As an identifier, you can use:
- for users: username, sAMAccountName (AD only), bind DN, or full DN
- for groups: full DN or Common Name (Common Name is not recommended because of possible conflicts)