{"id":41418,"date":"2024-03-19T06:22:03","date_gmt":"2024-03-19T05:22:03","guid":{"rendered":"https:\/\/kb.apptec360.com\/manual\/knowledgebase\/ldap-overview\/"},"modified":"2024-12-04T05:35:27","modified_gmt":"2024-12-04T04:35:27","slug":"ldap-overview","status":"publish","type":"knowledgebase","link":"https:\/\/kb.apptec360.com\/manual\/lt\/knowledgebase\/general-settings\/ldap-configuration\/ldap-overview\/","title":{"rendered":"LDAP ap\u017evalga"},"content":{"rendered":"\n

\u010cia galite u\u017emegzti ry\u0161\u012f su „Active Directory” per LDAP ir masi\u0161kai importuoti naudotojus ir grupes. Sinchronizavim\u0105 reikia atlikti rankiniu b\u016bdu. Galite sukonfig\u016bruoti kelis LDAP ry\u0161ius su skirtingomis sistemomis arba su skirtingomis konfig\u016bracijomis \/ filtrais. <\/p>\n\n\n\n\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t
Redaguoti<\/a><\/caption>\n
\n

Serverio pavadinimas<\/p>\n <\/td>

\n

Serverio rodomas vardas<\/p>\n <\/td>\n<\/tr>\n

\n

Tipas<\/p>\n <\/td>

\n

\u0160iuo metu palaikomi tik LDAP palaikantys „Active” katalogai<\/p>\n <\/td>\n<\/tr>\n

\n

LDAP domenas<\/p>\n <\/td>

\n

Pagrindinis LDAP domenas (pvz., example.com)<\/p>\n <\/td>\n<\/tr>\n

\n

LDAP prieglobstis<\/p>\n <\/td>

\n

B\u016btinas tik tuo atveju, jei LDAP prieglobstis nepasiekiamas pagal nurodyt\u0105 LDAP domen\u0105.<\/p>\n <\/td>\n<\/tr>\n

\n

Uostas<\/p>\n <\/td>

\n

Palikite tu\u0161\u010di\u0105, jei norite naudoti standartin\u012f prievad\u0105 (389 arba 636 SSL)<\/p>\n <\/td>\n<\/tr>\n

\n

Vartotojo vardas<\/p>\n <\/td>

\n

Pvz., CN=John,OU=Users,DC=EXAMPLE,DC=COM Pastaba: Dauguma sistem\u0173 reikalauja tokio formato vartotojo vardo ir nepriima „John” kaip vartotojo vardo.<\/p>\n <\/td>\n<\/tr>\n

\n

Slapta\u017eodis<\/p>\n <\/td>

<\/td>\n<\/tr>\n
\n

Patvirtinti slapta\u017eod\u012f<\/p>\n <\/td>

<\/td>\n<\/tr>\n
\n

Ry\u0161io saugumas<\/p>\n <\/td>

\n

Pastaba: naudojant SSL arba TLS, bus tikrinamas „Active Directory” sertifikatas. Jei jis yra pasira\u0161ytas paties naudotojo, turite prid\u0117ti \u0161aknin\u012f CA prie „OnPremise” ma\u0161inos pasitik\u0117jimo saugyklos. Jei esate debesyje, „Active Directory” turi pateikti patikim\u0105 sertifikat\u0105, kitaip ry\u0161ys veiks tik be \u0161ifravimo <\/p>\n <\/td>\n<\/tr>\n

\n

Automatinis sinchronizavimas.<\/p>\n <\/td>

\n

\u012ejungiamas automatinis LDAP katalogo sinchronizavimas per laiko interval\u0105, nurodyt\u0105 bendruosiuose LDAP nustatymuose.<\/p>\n <\/td>\n<\/tr>\n

\n

Bazinis DN<\/p>\n <\/td>

\n

Jei nenorite sinchronizuoti viso katalogo, \u010dia galite nurodyti OU.Pvz., OU=AndroidUsers,OU=Users,DC=EXAMPLE,DC=COM<\/p>\n <\/td>\n<\/tr>\n

\n

Narys<\/p>\n <\/td>

\n

Visi importuoti naudotojai bus \u012ftraukti \u012f pasirinkt\u0105 grup\u0119<\/p>\n <\/td>\n<\/tr>\n

\n

Tik aktyvuoti naudotojai?<\/p>\n <\/td>

\n

Kai \u012fjungta, bus atsi\u017evelgiama \u012f atribut\u0105 userAccountControl, vartotojai be \u0161io atributo nebus importuojami.<\/p>\n <\/td>\n<\/tr>\n

\n

LDAP filtras<\/p>\n <\/td>

\n

Naudodami LDAP filtr\u0105 galite filtruoti importuojamus naudotojus.<\/p>\n <\/td>\n<\/tr>\n

\n

„Regex” filtras<\/p>\n <\/td>

\n

Galite naudoti „Regex” filtr\u0105, kad i\u0161filtruotum\u0117te importuojamus vartotojus<\/p>\n <\/td>\n<\/tr>\n

\n

Bandomasis prijungimas<\/p>\n <\/td>

\n

Testuoja ry\u0161\u012f i\u0161saugant konfig\u016bracij\u0105<\/p>\n <\/td>\n<\/tr>\n

\n

Sinchronizuojant i\u0161 naujo nustatyti katalog\u0173 strukt\u016br\u0105?<\/p>\n <\/td>

\n

Jei tiesa, visi LDAP \u012fra\u0161ai bus perkelti atgal \u012f pradin\u0119 viet\u0105 LDAP medyje. Rekomenduojama \u012fjungti. <\/p>\n <\/td>\n<\/tr>\n

\n

Pakartotinai importuoti i\u0161trintus naudotojus ir grupes?<\/p>\n <\/td>

\n

Kai \u0161i funkcija \u012fjungta, i\u0161trinti naudotojai ir grup\u0117s bus sukurti i\u0161 naujo. Rekomenduojama \u012fjungti. <\/p>\n <\/td>\n<\/tr>\n

\n

Sinchronizavimo i\u0161trynimai?<\/p>\n <\/td>

\n

Kai \u0161i funkcija \u012fjungta, grup\u0117s ir naudotojai bus i\u0161trinti, kai jie bus i\u0161trinti LDAP serveryje. Taip pat bus i\u0161trinti i\u0161trint\u0173 naudotoj\u0173 \u012frenginiai. <\/p>\n <\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n\n

Po LDAP konfig\u016bracij\u0173 s\u0105ra\u0161u galite nustatyti laikotarp\u012f, kuriuo sistema sinchronizuojama automati\u0161kai. Automatiniam sinchronizavimui naudojamos tik tos LDAP konfig\u016bracijos, kuriose \u012fjungta atitinkama parinktis. <\/p>\n\n

<\/div>\n","protected":false},"parent":41419,"menu_order":0,"template":"","class_list":["post-41418","knowledgebase","type-knowledgebase","status-publish","hentry"],"acf":[],"_links":{"self":[{"href":"https:\/\/kb.apptec360.com\/manual\/lt\/wp-json\/wp\/v2\/knowledgebase\/41418","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/kb.apptec360.com\/manual\/lt\/wp-json\/wp\/v2\/knowledgebase"}],"about":[{"href":"https:\/\/kb.apptec360.com\/manual\/lt\/wp-json\/wp\/v2\/types\/knowledgebase"}],"version-history":[{"count":2,"href":"https:\/\/kb.apptec360.com\/manual\/lt\/wp-json\/wp\/v2\/knowledgebase\/41418\/revisions"}],"predecessor-version":[{"id":44607,"href":"https:\/\/kb.apptec360.com\/manual\/lt\/wp-json\/wp\/v2\/knowledgebase\/41418\/revisions\/44607"}],"up":[{"embeddable":true,"href":"https:\/\/kb.apptec360.com\/manual\/lt\/wp-json\/wp\/v2\/knowledgebase\/41419"}],"wp:attachment":[{"href":"https:\/\/kb.apptec360.com\/manual\/lt\/wp-json\/wp\/v2\/media?parent=41418"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}