LDAP Lookup Settings dialog box

This dialog box specifies settings to look up the email address and other attributes for an authenticated user on an LDAP server.

Option Description
Search Root Enter the distinguished name for the node where the search should start. No value is required if Windows authentication is used. Any value entered must begin with LDAP://.

The following format must be used:

LDAP://ldapserver.domain.com:port/OU=Users,DC=domain,DC=com

Possible LDAP Ports

  • Standard LDAP: 389
  • Active Directory Global Catalog: 3268
  • LDAP over SSL: 636
  • Active Directory Global Catalog over SSL: 3269

If the field is left blank, then by default the starting point of the search will be the root node of the directory tree. Search root patterns for different cases are shown below.

Authentication Specifies the authentication type.
  • Type — Anonymous, SSL, Windows or Simple
  • Username//Password — If SSL or Simple is selected, specify the user name and password that will be used for authentication.
Directory Search Two LDAP attributes are searched. The default attributes for Active Directory Server are "samAccountName" for Match Username Against and "mail" for Get E-mail Address From.
Test Lookup To test the search settings, enter a sample user name in the Username and click the Test button.

Search Root Patterns for Authentication

Authentication/Use Case Search Root Patterns Result
Case 1: Windows/Used when AutoStore server belongs to the Active Directory domain. Username and password should be left empty. Empty Credentials of the user under which AutoStore server is running will be used.

Searches through all containers in Active Directory to which AutoStore Server belongs.

Case 2:Windows/Used when AutoStore server belongs to the Active Directory domain. Username and password should be left empty.
LDAP://distinguished_name_of_container
                        

Example: LDAP://OU=Dept,DC=md,DC=kofax,DC=com

Credentials of the user under which AutoStore server is running will be used.

Searches within a specified container and its child container.

Case 1: Simple,SSL or Anonymous/Used when either AutoStore server is not a part of the domain or it is necessary to conduct search on non-active directory server.
LDAP://server_name:port
                        

Example: LDAP://abcweb.md.kofax.com:389

User name and password are necessary when Simple/SSL type is used.

Searches through the entire LDAP tree on the specified server.

Case 2: Simple,SSL or Anonymous/Used when either AutoStore server is not a part of the domain or it is necessary to conduct search on non-active directory server.
LDAP://server_name:port/distinguished_name_of_container
                        

Example: LDAP://abcweb.md.kofax.com:389/OU=Dept,DC=md,DC=kofax,DC=com

Searches within a specified container and its child container on the specified server.