Configuration Details
This step must be done by an existing Aviatrix CoPilot admin user.
- Go to Aviatrix CoPilot > Cloud Fabric > UserVPN > select the Gateways tab.
- Select the Edit icon next to the gateway.
- Under Authentication, click on the dropdown menu and select LDAP.
- Enter the values as described in the table below.
| Field | Description |
|---|---|
| LDAP Server | Enter the public IP or hostname for the LDAP / AD server. |
| Use SSL to connect to Server | When this setting is enabled, SSL is used to connect with the LDAP server. |
| Blind DN | DN of the user that the Gateway will use to authenticate with the LDAP server to handle user authentication. |
| Password | The password of the Bind DN user. |
| Base DN for User Entries | Starting point in the directory for searching for matching usernames. |
| Username Attribute | User attribute name for username to match. |
| Client Certificate | Only visible if the Use SSL to connect … setting is enabled. This file must be in PEM format and contain a public and private key pair. |
| CA Certificate | Only visible if the Use SSL to connect … setting is enabled. |
| Group Membership DN (Optional) | LDAP search filter. This value must be entered in the form of a query. For example: for Linux OpenLDAP: memberOf=cn=vpn_users,DC=example,DC=comfor Windows Active Directory: cn=vpn_users,DC=example,DC=com |
| LDAP User (Optional) | This field is only used when you click Test LDAP Configuration. It will use this value to search and respond if it was able to connect and find the user. |
- Enter a value for LDAP User and click Test LDAP Configuration to test the configuration.
- Click Save to save this configuration.