The LDAP Sync feature is designed to obtain your valid user list, including aliases, and modify your valid user list accordingly as users are added or removed from your server. To enable the LDAP Sync, login to the Mailprotector console. Then click "Domains" from the top or down the right hand side of the page. Click on the domain you are wanting to add users to. Then click on "Settings" found at the top or down the right hand side of the page. Click the "Directory sync" tab. There you will enter the settings as shown below:
Host- Hostname of domains mail server. (mail.domain.com)
Port- The default port is 389 but if you have a special setup where their ldap server listens on a different port, specify that here.
Server type- select the mail server type you have from the drop down menu.
Username/CN- This is the username of the user that was setup to access LDAP. This user must have the appropriate permissions to access the directory information required for syncing (the user list for the domain you are setting up). This string should include more than just a simple username in most cases. It also needs any OU (organizational units) and DC (domain components) need to define the path to this user.
- Allow from IP's - You will need to make sure you are allowing this LDAP connection from all the following Mailprotector IP's
Example - CN=administrator,OU=Users,DC=contoso,DC=com
Example view of a standard Active Directory folder structure.
New password- The password for the defined user from above.
Confirm new password
Search base- This is where you limit the LDAP query to a certain domains user list in the directory. It typically consists of DC definitions for the domain this LDAP sync is being setup for. Example:
This search base limits the results to just the "domain.com" directory information.
Email diagnostic Report to:- Enter the address you want the diagnostic reports sent to.