This procedure describes how to configure the LDAP binding parameters when Microsoft Active Directory (AD) is used.
Procedure
Run the Avaya Aura® Device Services configuration utility using the app configure command.
Select LDAP Configuration.
Configure the following settings:
Parameter
Description
Example
URL for LDAP Server
The URL used to locate the Active Directory server.
Avaya Aura® Device Services uses the AD Global Catalog instead of the Avaya Aura® Device Services LDAP interface. The Global Catalog contains the replicated copies of data in all of the enterprise domains. This avoids the need for delegated searches by following references in the LDAP to other AD domain controllers.
Microsoft Active Directory uses a Secure LDAP connection. For the LDAPS connection, a CA (Certificate Authority) certificate for the CA that signed the AD server certificate needs to be imported into the Avaya Aura® Device Services trust store before the LDAP configuration can be made.
LDAPS does not support the use of IP addresses in URLs.
If FIPS is enabled, you must use the LDAPS protocol to connect to the LDAP server.
ldaps://gdc.global.example.com:3269
Bind User
The user that has read and search access to Active Directory.
