LDAP

Integrating with LDAP allows you to synchronize users between Buddy and your server.

Prerequisites

You need this infomation to set up the LDAP integration:

LDAP server host and port
Does the LDAP server support SSL connection?
DN and password of the person with privilleges to look up users on LDAP
LDAP subtree with user entries
Names of email and display name attributes

Testing connection with LDAP server

You can test the connection with your LDAP server using the ldapsearch command:

ldapsearch -W -h localhost -D "cn=admin,dc=example,dc=org" -b "ou=users,dc=example,dc=org" -W "(objectClass=inetOrgPerson)" cn mail$

This command:

signs in to the account with DN: cn=admin,dc=example,dc=org
performs query: ou=users,dc=example,dc=org
filters entries with (objectClass=inetOrgPerson)
displays cn and mail attributes

This is what the system returns when you run the command:

# extended LDIF
#
# LDAPv3
# base <ou=users,dc=example,dc=org> with scope subtree
# filter: (objectClass=inetOrgPerson)
# requesting: cn mail
#

# Example User, users, example.org
dn: cn=Example User,ou=users,dc=example,dc=org
mail: example.user@buddy.works
cn: Example User

# search result
search: 2
result: 0 Success

# numResponses: 2
# numEntries: 1

Check the mail and cn fields. You need these details to sync LDAP accounts with Buddy.

Adding LDAP to Buddy

To configure LDAP integration:

Sign in to Buddy On-Premises as admin.
Go to the On-Premises Admin panel and switch to the LDAP tab.
Enter integration details.
Click Save changes and restart Buddy to apply the changes.

Testing the configuration

After you restart the instance, go to the People panel and click the Hamburger button. Click Invite users from LDAP.

Inviting users from LDAP

If the page takes too long to load or you get this message:

It means that Buddy can't connect to the LDAP server. Go back to the LDAP integration panel and check if the information you provided is correct. Additionally, check if the LDAP server is online.