Configuring LDAP Attributes

You can adjust the data stored in the Control Panel to match the LDAP attributes of your directory service.

In the Service Dashboard, the LDAP attributes are predefined with default values for the Microsoft Active Directory. If the actual attributes names of your directory service differ, you can change them under LDAP attributes.

  1. Navigate to Service Dashboard > LDAP Connection.
  2. If you have not yet activated the LDAP connection, toggle the switch Activate LDAP connection.

    Further control elements are unlocked, including the form for LDAP attributes.

    Figure 1: LDAP attributes
  3. Fill out the required fields of the form under LDAP attributes. The fields have the following meanings:
    • Email address: Attribute of the directory service under which the email addresses of users are stored. In a Microsoft Active Directory, the default attribute proxyAddresses is used.
    • Alias email addresses: Attribute of the directory service under which the alias email addresses of users are stored. In a Microsoft Active Directory, the default attribute proxyAddresses is also used for that.
    • Group: Attribute of the directory service under which the groups are stored. In a Microsoft Active Directory, the default attribute memberOf is used.
    • sAM account name: Attribute of the directory service under which the name of the SAM account is stored. In a Microsoft Active Directory, the default attribute sAMAccountname is used.
    • Minimum number of users: Minimum amount of users expected during the LDAP synchronization. This can be used as a criterion for the quality of the synchronization. If this value is not reached during a synchronization process, an email will be sent to the email address specified under Email address for notifications to notify the user about possible synchronization problems.
    • Minimum number of groups: Similar to Minimum number of users, but for groups instead of users. The default value is 1.
    • Email address for notifications: Email address to which notifications about the LDAP synchronization should be delivered. The default value is 0.
    • Object ID: Attribute of the directory service used for the unique external identification of mailboxes. In a Microsoft Active Directory, the default attribute objectguid is used.
  4. If you have not yet activated the LDAP connection, activate it (see Activating the LDAP Connection).
  5. Click on Apply changes in the lower window area.

Differing LDAP attributes have been configured for your LDAP connection.