Connecting to an LDAP Server

In EFT Server Enterprise, you can create an LDAP-authenticated Site and connect to an LDAP server. To enable LDAP SSL, you need to have a certificate that includes Server Authentication on the LDAP server you are connecting to. If you install Certificate Services on the domain that you install EFT Server, you can request the certificate on the LDAP server. For more information, refer to the Microsoft Support article "How to enable LDAP over SSL with a third-party certification authority."

When you create a Site that uses LDAP authentication, you will need to provide the following information:

ou=people,dc=forest,dc=tree,dc=branch

dc=forest,dc=tree,dc=branch

objectClass=person

This finds the LDAP entries that are part of the objectClass person; that is, it retrieves the users on the LDAP server that belong to the person ObjectClass.

cn=Manager,dc=forest,dc=tree,dc=branch

When you use LDAP as the authentication method, EFT Server pulls the user account list and the authentication from the LDAP Server. Group (Allows the administrator to define access permissions to files and folders. Just as Settings Templates control access to EFT Server resources such as bandwidth allowances and connectivity privileges, Groups control access to folders. See virtual folders.) lists, Group membership, VFS (EFT Server's Virtual File System allows you to grant access to files and folders on your system based on user and Group permissions. See virtual folder.) Groups, and VFS (EFT Server's Virtual File System allows you to grant access to files and folders on your system based on user and Group permissions. See virtual folder.) User permissions are handled by EFT Server and stored in the local AUD and CFG files. These permissions must be configured and maintained with the Administrator or through the COM interface.

Related Topics

Creating a Site that Uses LDAP Authentication

Testing LDAP Authentication Settings