Creating a Site that Uses LDAP Authentication

To create an LDAP Site, in the step in which you specify the Authentication Method, you must click LDAP Authentication when you create the Site; you cannot go back and change the authentication method after the Site is created.

Before you create the Site, review and gather the information described in Connecting to an LDAP Server.

To configure a Site using LDAP authentication

  1. The Site Setup wizard appears after you complete the Server Setup wizard; otherwise, in EFT Administrator, click Configuration > Create New Site, or right-click anywhere in the Server's tree, then click Create New Site.

  2. Do one of the following:

  3. Click Next. The Site Setup wizard Welcome page appears.

    1. In the Site Name box, type a name a distinguishing name for the Site. MySite appears by default, but you can change this to anything you want.

    2. In the Listening IP box, select a specific IP address or keep the default of All Incoming.

  4. Click Next. The Site Root Folder page appears.

    1. In the Site root box, click Browse to specify the root folder, or keep the default.

    2. In the Additional options area, select the check boxes as needed:

  5. Click Next. The User Authentication page appears.

  6. Click Next. The LDAP Authentication page appears.

    1. In the Server box, type the Server name or IP address.

    2. In the Port box, keep the default port 389 or specify a different port.

    3. In the Base DN box, type the base domain name for the LDAP user database. For example, type:
      dc=forest,dc=intranet,dc=gs

    4. In the User Filter box, type the search filter information. See Advanced LDAP Filtering for a detailed explanation of LDAP filtering.

    5. In the Login Attribute box, type a comma-separated list of attributes to retrieve. For example, type:

      mail,e-mail,name,cn

    6. In the Authentication mode area, click one of the following binding methods to define how the client is authenticated:

    7. For details of creating complex LDAP filters, see Advanced LDAP Filtering.

    8. If you are using SSL, select the Bind Using SSL check box, then in the User list refresh interval list, click the down arrow to select how often you want EFT Server to check the database for new users.

    9. The LDAP bind password is encrypted in the FTP.cfg file.

    10. Click Advanced. The LDAP Authentication Advanced Options dialog box appears.

    11. Specify advanced options based on your requirements.

    12. Click OK to close the LDAP Authentication Advanced Options dialog box.

    13. To test your settings, click Test. The LDAP Query dialog box appears.

    14. For details of the LDAP Query dialog box, see Testing LDAP Authentication Settings.

    15. Click the X in the upper right corner to close the LDAP Query dialog box.

    16. Specify the path at which EFT Server will store additional user settings, if different than the default of C:\Program Files\GlobalSCAPE\EFT\MySite.aud.

    17. In the User list refresh interval box, specify the frequency at which EFT Server's user list should be refreshed.

  7. Click Next. The Perimeter Security page appears.

  8. Click Next. The Connection Protocols page appears.

  9. Click Next. The Site Setup Completed page appears.

  10. You are offered the option of continuing to the User Creation wizard or quitting the Site Setup wizard. Click an option, then click Finish.

    You can run the Site Setup wizard again at any time to create additional Sites. You can view and modify Site configuration in EFT Administrator.

  11. After EFT Server connects to the LDAP Server, the users listed in the database appear under the Default Settings node of the User Setting Levels.