You can add and edit LDAP Labels as needed. Be sure to test LDAP Labels before you enable them.
1. |
a. |
Log in to the KACE SMA Administrator Console, https://KACE_SMA_hostname/admin. Or, if the Show organization menu in admin header option is enabled in the appliance General Settings, select an organization in the drop-down list in the top-right corner of the page next to the login information. |
b. |
c. |
d. |
▪ |
Enable the appliance to run the LDAP Label.
| |||||||
The LDAP Label type. There are two types of LDAP Labels:
You must include at least one KACE SMA variable, such as KBOX_COMPUTER_NAME, in device labels for the LDAP label to be applied to a device. During LDAP label processing, the variable is used to compare an attribute's value in the LDAP directory to determine whether relationships exists between the LDAP object and a KACE SMA object. See LDAP variables.
| |||||||
Notes from the label selected in the Associated Label Name field. | |||||||
| |||||||
The LDAP port number, which is usually 389 (LDAP) or 636 (secure LDAP). | |||||||
The search filter. For example: (&(sAMAccountName=KBOX_USERNAME)(memberOf=CN=financial,DC=example,DC=com)) | |||||||
The password of the account the KACE SMA uses to log in to the LDAP server. | |||||||
For User-type labels: Enter a label attribute, such as: memberOf. | |||||||
For User-type labels only: Enter the label prefix. For example: ldap_ The label prefix is a string that is added to the beginning of all the labels. |
If you are unsure of the Base DN and Advanced Search information, use the LDAP Browser. See Use the LDAP Browser.
NOTE: Negative search filters are formatted as follows: (!(sAMAccountName=David)). Any other format using negatives will result in an error. |
3. |
4. |
If the LDAP Label is ready to use, select the Enabled check box. Otherwise, save the label without enabling it. |
5. |
Add and test an LDAP Label. See Add or edit LDAP Labels.
1. |
a. |
Log in to the KACE SMA Administrator Console, https://KACE_SMA_hostname/admin. Or, if the Show organization menu in admin header option is enabled in the appliance General Settings, select an organization in the drop-down list in the top-right corner of the page next to the login information. |
b. |
c. |
2. |
3. |
1. |
a. |
Log in to the KACE SMA Administrator Console, https://KACE_SMA_hostname/admin. Or, if the Show organization menu in admin header option is enabled in the appliance General Settings, select an organization in the drop-down list in the top-right corner of the page next to the login information. |
b. |
c. |
3. |
The LDAP Browser can be useful when you need to enter information in the Search Base DN and the Search Filter fields for LDAP queries.
1. |
a. |
Log in to the KACE SMA Administrator Console, https://KACE_SMA_hostname/admin. Or, if the Show organization menu in admin header option is enabled in the appliance General Settings, select an organization in the drop-down list in the top-right corner of the page next to the login information. |
b. |
c. |
2. |
| |||
The LDAP port number, which is usually 389 (LDAP) or 636 (secure LDAP). | |||
The password of the account the KACE SMA uses to log in to the LDAP server. |
3. |
If the operation fails, verify the following:
4. |
Type a comma-separated list of Active Directory fields that you want to search for. |
6. |
© 2021 Quest Software Inc. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy