Introduction

The Lightweight Directory Access Protocol (LDAP) enables you to import users and groups from an Active Directory (AD) into the ELO system. This is done with LDAP import.

You need to set up and configure the connection between LDAP and the ELO LDAP interface for the LDAP import to work.

In addition, LDAP authentication must be enabled to allow users to log on to ELO with the data stored in the Active Directory.

You will find the menu items in the ELO Administration Console under LDAP.

The user administration in the LDAP directory is managed in a tree structure. In this concept, a unique name within the LDAP directory, known as the distinguished name (DN), is used as a unique key for each user. An example of a DN is cn=John Smith,ou=people,dc=comy,dc=org. The DN in this case is composed of three parts: the common name (CN), the organizational unit (OU), and the domain component (DC). The combination of OU/DC is used to reference different branches within the LDAP tree structure. The DC addresses the top level below the LDAP directory root node. This usually represents the Internet domain of the company. The schema data is also located directly under the root node. The possible attributes are already specified in the LDAP schema, and the corresponding values for these properties are saved in the LDAP entry that is resolved through the DN.

Please note

Do not use a ; (semicolon) or \ (backslash) in groups and user names in Active Directory (AD).