LDAP Lookup Settings dialog box

This dialog box specifies settings to look up the email address and other attributes for an authenticated user on an LDAP server.

Option	Description
LDAP Server	Type the address or host name of the LDAP server.
Root DN	Enter the distinguished name for the node where the search should start. No value is required if Windows authentication is used. A DN is made up of ‘attribute=value’ pairs separated by commas. The value must begin with LDAP:// in the following format: `LDAP://ldapserver.domain.com:port/OU=Users,DC=domain,DC=com` Possible LDAP Ports Standard LDAP: 389 Active Directory Global Catalog: 3268 LDAP over SSL: 636 Active Directory Global Catalog over SSL: 3269 If the field is left blank, then by default the starting point of the search will be the root node of the directory tree. Search root patterns for different cases are shown below.
Login as anonymous	Select this check box to establish an anonymous connection to the LDAP server.
Login with the following credentials	Select this check box to log in to the LDAP server with the specified User name and Password.
Directory Search	In the Directory Type box, select the type of directory to be searched. Active Directory or eDirectory — Known predefined attributes will be used to match the authenticated user name and retrieving the email address. Custom — Indicate which attribute is going to be used to identify a match against the authenticated user in the Match username against box. You must also provide the LDAP attribute that contains the email address of the user in the Get email address from box. To retrieve other information about the user in addition to the email address, you can specify additional LDAP attributes in the Additional attributes box. Type the name of these LDAP attributes separated by a semicolon. These attributes will be available as User Attributes Replacement Tag Names (URTNs). Only the email address will be retrieved if this box is left empty.
Test Lookup	To test the search settings, enter a sample user name in the User name box and click the Test button.

Search Root Patterns for Authentication

Authentication/Use Case	Search Root Patterns	Result
Case 1: Windows/Used when AutoStore server belongs to the Active Directory domain. User name and password should be left empty.	Empty	Credentials of the user under which AutoStore server is running will be used. Searches through all containers in Active Directory to which AutoStore Server belongs.
Case 2:Windows/Used when AutoStore server belongs to the Active Directory domain. User name and password should be left empty.	`LDAP://distinguished_name_of_container` Example: LDAP://OU=Dept,DC=md,DC=kofax,DC=com	Credentials of the user under which Auto Store server is running will be used. Searches within a specified container and its child container.
Case 1: Simple,SSL or Anonymous/Used when either AutoStore server is not a part of the domain or it is necessary to conduct search on non-active directory server.	`LDAP://server_name:port` Example: LDAP://abcweb.md.kofax.com:389	User name and password are necessary when Simple/SSL type is used. Searches through the entire LDAP tree on the specified server.
Case 2: Simple,SSL or Anonymous/Used when either AutoStore server is not a part of the domain or it is necessary to conduct search on non-active directory server.	`LDAP://server_name:port/distinguished_name_of_container` Example: LDAP://abcweb.md.kofax.com:389/OU=Dept,DC=md,DC=kofax,DC=com	Searches within a specified container and its child container on the specified server.