LDAP Server Guidelines

This topic provides LDAP server guidelines. For general information about LDAP, see About LDAP. For information on how to configure LDAP on the library, see Configuring LDAP.

The library supports all LDAP servers. You can also use Kerberos for added security. For specific instructions on configuring Kerberos, see Configuring Kerberos.

The library Web client and operator panel do not allow you to create, modify, or delete user account information located on an LDAP server. This must be done by the directory service provider.

The following groups must be created on the LDAP server:

You will need to have at least one user assigned to both the Library User Group and the Library Admin Group on the LDAP server in order to test the LDAP settings on the library (using the Test Settings button on the Setup - Remote Authentication screen; see Configuring LDAP). Since users are not typically members of both groups, you may need to create a special or temporary user specifically for this purpose.

See also: