Configuring LDAP - For Local Administrators

Navigation

Select a link below to jump to that section:

• General Information
• How to Use This Feature
• Connection Source
• Future
• How to Request

General Information

• To provide appropriate security and functionality a feature is available which makes it easy to connect to CampusAD using the secure LDAP/S binding.
• This feature is necessary to meet Information Assurance cyber security standards and requirements: unsigned network traffic is susceptible to replay and Man-in-the-Middle attacks.

Back to Top

How to Use This Feature

• Resources (applications, system accounts, devices, etc.) that require manual connection settings to authenticate using LDAP should be created that use this configuration. Please check your documentation or vendor for non- windows device O/S, service, and applications.

Back to Top

Connection Source

• Step 1: Update your resource to use (ldaps.campusad.msu.edu) and enable the SSL setting where applicable
  • This is a secure setting and credentials are encrypted instead of using clear text
  • It is load balanced and highly-available
• Step 2: Remove any static mappings to CampusAD for LDAP communication (static ip address or servername)

Back to Top

Future

• In the future we will remove support for non-secure LDAP connections to CampusAD

Back to Top

How to Request

• Please submit a request ticket to IT Service Desk to set up a support call with the Active Directory Services team.

Back to Top