Summary:
Below describes how to synchronize LDAP with WACS.
Please note that you have to follow the process exactly otherwise the LDAP setup may fail.
Pre-Requisite:
AD Domain Services are successfully installed on LDAP Server.
There is no communication restriction between WACS & LDAP Server (Both ways)
Dot Net(.Net) 3.5 Security Update is installed on windows server otherwise error will be generated during AD-LDS Installation (A prerequisite for AD LDS Service)
Setup LDAP using AD LDS
Now let us add AD LDS in our VM ldapstest
Click on Startà Server Manager à Add Roles and Features. Click Next.
Choose Role-based or feature-based installation. Click Next.
Select ldapstest server from the server pool. Click Next.
Mark Active Directory Lightweight Directory Services from the list of roles and click Next.
From the list of features, choose nothing – just click Next.
Click Next.
Click Install to start installation.
Once installation is complete, click Close.
Now we have successfully set up AD LDS Role. Let us create a new AD LDS instance “CONTOSO” using the wizard. Click the “Run the Active Directory Lightweight Directory Services Setup Wizard” in the above screen. And then Click Close.
Choose unique instance since we are setting it up for the first time.
Type “CONTOSO” in Instance name and click Next.
By Default, LDAP Port is 389 and LDAPS port is 636, let us choose the default values. Click Next.
Create a new Application Directory Partition named “CN=MRS,DC=CONTOSO,DC=COM”. Click Next.
Using the default values for storage location of AD LDS files- Click Next.
Choosing Network Service Account for running the AD LDS Service.
You will receive a prompt warning about data replication. Since we are using a single LDAP Server, we can click Yes.
Choosing the currently logged on user as an administrator for the AD LDS Instance. Click Next.
Mark all the required LDIF files to import (Here we are marking all files). Click Next.
Verify that all the selections are right and then Click Next to confirm Installation.
Once the instance is setup successfully, click Finish.
Configure KLDAP User:
1. Go to Start à Administrator Tool à Active directory user and computers
2. Open your domain à Domain and controller à Create a “ACS Group” under Security Group - Global as below:
3. Create LDAP User “ldapadmin” and do the following:
Right Click on User & Click Properties
•Add User to ACS Group Member
•Set Organization (Company & Department) à Matching WACS Software
4. Finally, login to LDAP Server on WACS Software using (Windows/LDAP User) Important Sequences:
• Put the Complete LDAP Server Information
• Click Save
• Click Connection Test
5. Now go to LDAP Configuration à Add LDAP User Group (ACS Group)àSaveàSync
6. Let’s finally pull the card holder User information from the LDAP Server
< End of Contents >
Comments
0 comments
Please sign in to leave a comment.