Enable Orion Platform users to authenticate through LDAP
This topic applies to all Orion Platform products.
You can choose to have all of your AD users authenticate through LDAP. The Orion server does not need to be added to the Windows domain with this authentication method. All authentication requests will use the domain you save, even if the Orion server is part of a different domain.
We do not support Anonymous authentication through LDAP.
Log in to the Orion Web Console as an administrator.
Click Settings > All Settings in the menu bar.
Click Advanced AD Settings in the User Accounts grouping.
Toggle Authenticate Active Directory Users via LDAP.
Enter your LDAP server information and select the authentication method that matches what is used in LDAP.
Click Discover DN to fill in the distinguished name (DN) of the AD domain automatically. If the DN field does not populate, verify that the Directory Server Address is correct.
Windows individual accounts now use LDAP. If you created Orion Web Console accounts that use Active Directory or local accounts and those accounts cannot authenticate through LDAP, those accounts cannot login.
If you disable this selection, Windows users or group members created while it was enabled cannot login.