Skip to main content
Skip table of contents

Basic Details

  1. Fill in all the necessary data and settings.

  2. Press Save button to cave changes.

Form items explanation:


Basic Description

Default Value

Advanced Description


LDAP Connection ID


Unique LDAP connection ID


LDAP Connection url (ldap://[hostname/ip]:[port] or ldaps://[hostname/ip]:[port])


URL to reach LDAP server. Multiple urls can be added separated by a space. The pool of connections will be initialised in a Round Robin manner using the configs.

Base DN

A distinguished name (DN) that identifies the starting point of a search


Base DN for LDAP bind. Search starts in this OU.


LDAP Server credentials username


username used for LDAP authentication


LDAP Server credentials password


password used for LDAP authentication

Additional Filters

Filter query to be used on user filtering

additional filter to reduce search results - typically based on objectClass. This needs to be written with LDAP syntax. e.g. (!(objectclass=foreignSecurityPrincipal))

Connect Timeout (ms)

Connection timeout in miliseconds


Read Timeout (ms)

Read timeout in miliseconds


Domain Pattern


Domain pattern used in a search query.
For example user user@dev.local will use this ldap connection when domain pattern is set to *.dev.local.
In case of multiple values, use comma (,) as separator.

Query nested groups

Active Directory specific flag indicating if the list of user groups will be computed by flattening the hierarchical tree


In case of complex group hierarchy slows down queries. Recommend to switch off.

Has groups with foreign users


When set, groups from non-local (foreign) domains will be also included.

Draft connection

Flag that indicates if the connection should be disabled


Draft connection means not used (disabled).

Accept all certificates (not recommended)

Disables certificate verification during SSL/TLS handshake, ignoring expired or not trusted certificates


Not recommended - significantly reduce security.

Disable hostname verification (not recommended)

Disables hostname verification during SSL/TLS handshake


Not recommended - significantly reduce security. Certificate must contain DNS name used in URL parameter. Must be switched on in case of IP address used in URL.

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.