AD/LDAP Authentication Feature
This page contains information to assist our customers with utilizing the Active Directory (AD) / Lightweight Directory Access Protocol (LDAP) feature in RegScale. It describes what it is, why you would use it, the benefits, and provides instructions on getting started.
What is it?
AD/LDAP is a common directory based service provided by Microsoft and others to securely authenticate users. It is commonly used to authenticate users to devices, networks, and applications to provide centralized security around authentication services.
Why would you use it?
AD/LDAP is used to outsource authentication from RegScale to customer provided authentication directories. There are many reasons to use this feature which include:
- Centralized authentication
- Tying access to AD/LDAP groups to manage need to know
- Maintains existing security logging and account management
What are the benefits?
This feature has multiple benefits for an organization; to include:
- Improved security by centrally managing and monitoring authentication
- Easier to add/remove access when onboarding and offboarding employees
- Improved continuous monitoring of access
How do I use it?
Instructions for using this feature are provided below:
- Configure the AD/LDAP following our configuration guide
- Test the connectivity and then sync the AD/LDAP users into RegScale
- Once AD/LDAP is enabled, you will see a new AD/LDAP tab on the login page
- Click this tab then enter your AD/LDAP username and password to authenticate via the customer provided AD/LDAP system
- If you enter valid credentials, you will authenticate successfully and login
- For each user sync'd via AD/LDAP, you must ensure you assign the appropriate roles/permissions in the system to grant access. See our guide for user management and roles
NOTE 1: This feature is not available in RegScale Community Edition (CE).
NOTE 2: Single Sign On (SSO) with Azure AD is coming soon.
NOTE 3: You must have administrator access to configure AD/LDAP.
Updated 5 days ago