LDAP Accounts
Note: LDAP accounts are supported for Laserfiche Rio and Laserfiche Avante installations only.
In order to take advantage of your LDAP accounts with Laserfiche, you will first need to create an LDAP Server Profile for your repository. This only needs to be done once. You can then add your LDAP user and group accounts to the repository, allow them to authenticate, and grant them trustee settings such as rights, tags, attributes and audit settings.
Once you have set up a Server Profile and added an LDAP account, the user whose account you added will be able to log in using their account's common name followed by the at symbol (@) and the Server Profile name you set. For example, if you created a server profile called "MyCompany" and added a user with the LDAP common name "John Smith," that user could log in to a Laserfiche client application by typing "John Smith@MyCompany" in the User option and typing his LDAP password in the Password option.
Adding LDAP Accounts
You can either add LDAP users individually, or you can add LDAP groups; the users in those groups will inherit their authentication and rights from the group.
The LDAP groups and/or users that will be trusted or denied can be
specified from the LDAP Management item in the Laserfiche
See Creating a User for instructions on adding an LDAP account. See Deleting a User for instructions on deleting an LDAP account.
Note: You should configure your LDAP server profile before adding LDAP accounts, and your LDAP accounts should be within the base distinguished name for the server profile. If you add an LDAP account that is not within the base distinguished name of a defined LDAP profile, Laserfiche will not be able to resolve its common name, or determine whether it is a user or a group, and the user will not be able to log in.