Pearl User Guide
User administration
Configure LDAP
You can use the Lightweight Directory Access Protocol (LDAP) for authentication into the system. Specify user
roles by using group DNs for users who log in as the administrator, operator, or as a viewer.
The system has only
one
admin user and
one
operator: LDAP users log in as either the admin or
operator, they do not have their own private profiles.
When enabled, LDAP authentication is an
alternative
to the regular system usernames and
passwords. You may still login as
admin
,
operator
or
viewer
using the passwords for those
accounts. Furthermore, any LDAP users with the name admin, operator or viewer are ignored. The
local accounts are used instead.
For security reasons, you should configure passwords for the local accounts. See
These instructions assume you have a pre-configured LDAP server. The server must support anonymous
binding or have a special bind account with search access priveleges. (Note that Active Directory does not
support anonymous binding.)
LDAP referrals, restrictions and failovers are not supported.
To configure LDAP authentication for your Pearl:
1. Connect to the admin interface using your preferred connection mechanism. See
2. Login as admin.
3. Select the
Access passwords
link in the Configuration menu; the password configuration page opens.
4. Scroll to the
LDAP authentication
section.
29