LDAP/Active Directory
- PeterF (Deactivated)
- Brett Sutton (Deactivated)
By default Noojee Administrator ships with an internal database which provides local user authentication.
Noojee Administrator is also able to authenticate using any LDAP server such as Microsoft Active Directory (AD) or OpenLDAP.
The advantage of using LDAP to authenticate users is that a user doesn't need to remember yet another password. Instead they can use the same username and password to log into their desktop Windows, Linux or Mac system as they use to log into Noojee Administrator.
Synchronisation between Noojee Administrator and your LDAP server is automatic, so once it is setup there is no further management required.
Simply adding a user to your Active Directory or OpenLDAP server will enable that user to login to Noojee Administrator.
At the point in time that the user logs in to Noojee Administrator, for the first time, the required Noojee Administrator Account will be created. Any Noojee Administrator groups will also be added to the user's account as per the defined group mappings in the LDAP configuration. On subsequent logins Noojee Administrator groups may be removed from the user's account if the group mappings denote that the groups are no longer required (and the fully managed option is enabled).
Noojee Administrator will also honour the LDAP user account 'enabled' flag. If a user is disabled on your LDAP server then Noojee Administrator will not allow the user to log in.
From a users perspective there is no difference between logging in using Noojee Admin's builtin authentications system or using LDAP. The only difference is that when using LDAP authentication the user will not be able to change or recover their password from within Noojee Administrator. Password management must be done in the LDAP server.
Note: LDAP integration may NOT be used with Recording Encryption as under normal circumstances the Noojee password is used as part of the Recording encryption. If Noojee is not managing the password then we will be unable to update the recording encryption keys when a user changes their password.
LDAP Server Configuration
LDAP User configuration
LDAP Group configuration
LDAP Group administration