Description
The LDAP is an open,industry standard application protocol to access and to maintain distributed directory information services over an Internet Protocol (IP) network. Directory services play an important role in developing intranet and Internet applications as it ensure the sharing of information on users, systems, networks, services, and applications throughout the network. A common use of LDAP is to provide a common place to store usernames and passwords. This allows many different applications and services to connect to the LDAP server to validate users.
Features / Benefits
- Allows any user to login with given LDAP accounts.
- Rather than managing user lists for each one within an organization, LDAP can be used as a central directory accessible from anywhere on the network.
- Saves lot of time and effort as their is no need to create separate credentials for each member.
- Easy and secure way which protects the information efficiently.
How to use
- Click LDAP settings on admin side apps page for configure.
- Give all configuration details to configure.
- Click update button to save the LDAP configuration.
- After that LDAP will be activated, you can check with LDAP login credentials.
- Here it's the dashboard for logged in user.
What do I Need?
Allows any user in an organization to login with LDAP account, no need to create individual credentials for everyone.
Assures Information security as LDAP, sensitive data can be protected from prying eyes.
LDAP servers usually provide at least access and error log files. So, the administrators can easily track any issues in directory environment and troubleshoot any problems that may arise.
A well-defined client Application Programming Interface (API) which gives the administrator with flexibility to deploy the database best suited for the type of information the server is to disseminate.
My Problems
Wasting a lot of time for generating credentials for each and every members in the Organization.
Struggles with securing confidential informations or datas.
Difficult for administrators to track and troubleshoot any problems or issues arose in the directory.
IONCUBE installation steps
-
Download the ioncube by executing
wget https://downloads.ioncube.com/loader_downloads/ioncube_loaders_lin_x86-64.zip
-
Unzip the IONCUBE loader by executing
unzip ioncube_loaders_lin_x86-64.zip
and goto the ioncube folder bycd ioncube
-
Check your PHP version by executing
php -v
-
Run the comand
php -i | grep extension_dir
and it will give the path to thephp_modules
-
Move your PHP version ioncube loader
ioncube_loader_lin_##PHP_VERSION##.so
files tophp_modules
by running the commandcp ioncube_loader_lin_##PHP_VERSION##.so ##php_modules_path##
-
Open the
php.ini
file byvi /etc/php/##PHP_VERSION##/fpm/php.ini
-
Add this line
zend_extension = ##php_modules_path##/ioncube_loader_lin_##PHP_VERSION##.so
-
After adding please restart the php by
systemctl restart php##PHP_VERSION##-fpm
and nginx bysystemctl restart nginx
Installation Steps
- Purchase LDAP App
-
Goto Restyaboard installation root directory.
e.g., directory:
/usr/share/nginx/html/restyaboard/
- Unzip the purchased LDAP app into your root directory
-
Provide file permission to unzipped files located in
client/apps/r_ldap_login/
path e.g.,chmod -R 0777 client/apps/r_ldap_login/
-
Execute the
r_ldap_login.sql
in your Restyaboard database, located inclient/apps/r_ldap_login/sql/
directory -
Execute the sql command
UPDATE users SET is_ldap = 't' WHERE email = '##USER_EMAIL##'` by changing ##USER_EMAIL##
for changing existing users as ldap users -
Configure LDAP on
http://{YOUR_SERVER_NAME}/#/apps/r_ldap_login
path in your Restyaboard server.Configuration details
- Enable SSL Connectivity - Enable your ssl connectivity true or false
- Server - Enter your Server number
- Port - Enter your port number
- Protocol Version - Enter your protocol version
- Base DN - Enter your base DN
- Account Filter - Enter your account Filter
- Advanced Filter - Enter your advanced Filter
- Bind DN - Enter your bind bn
- Bind password - Enter your bind password
- Import User - click the import user button to import all LDAP users.
- Don't send welcome email - click the 'Don't send welcome email' only if you don't want to send welcome email to the added user.
- Finally, clear the browser cache, login with LDAP login credentials to login.
Installation Video
FAQs
1. How secure is LDAP?
The LDAP protocol is by default and ensures decent security. LDAPS on the other hand is much secure by default as long as proper ciphers are negotiated.