Table of Contents
PaperCut MF supports the following LDAP server types out-of-the-box:
Novell eDirectory
Microsoft Active Directory
Unix/NIS/Posix
Basic configuration options for these platforms/environments are discussed at the section called “Using LDAP for user synchronization”.
However, other server/schema types can be supported by defining the fields to query and the LDAP searches to perform. These options are configured by adjusting config entries in the Config Editor, which can be opened from the Options tab. The following config keys are available for the primary sync source:
Config name | Description |
---|---|
ldap.schema.user-name-field | The LDAP field that contains the user's username. |
ldap.schema.user-full-name-field | The LDAP field that contains the user's full name. |
ldap.schema.user-email-field | The LDAP field that contains the user's email address. |
ldap.schema.other-emails-field | The LDAP field that contains the user's other email addresses. If the user has only one other email then a single value or a multi-value LDAP field can be used. If the user has multiple other email addresses then a multi-value LDAP field must be used. |
ldap.schema.user-second-card-id-field | The LDAP field that contains the user's second card id. |
ldap.schema.user-department-field | The LDAP field that contains the user's department. |
ldap.schema.user-office-field | The LDAP field that contains the user's office location. |
ldap.schema.user-card-id-field | The LDAP field containing the user's primary card ID value. |
ldap.schema.user-second-card-id-field | The LDAP field containing the user's secondary card ID value. |
ldap.schema.user-name-search |
The LDAP search to retrieve the user. The
IMPORTANT: The search must include the |
ldap.schema.group-name-field | The LDAP field that contains the group's name. |
ldap.schema.group-member-field | The LDAP field that contains the group members. |
ldap.schema.group-search |
The LDAP search to retrieve the group. The
IMPORTANT: The search must include the |
ldap.schema.posix-groups |
If |
ldap.schema.home-directory-field | The LDAP field that contains the user's home folder path. |
Table D.1. LDAP Primary Sync Source Config entries
If you are using a secondary sync source, the following config keys are available:
Config name | Description |
---|---|
ldap2.schema.user-name-field | The LDAP field that contains the user's username. |
ldap2.schema.user-full-name-field | The LDAP field that contains the user's full name. |
ldap2.schema.user-email-field | The LDAP field that contains the user's email address. |
ldap.2.schema.other-emails-field | The LDAP field that contains the user's other email addresses. If the user has only one other email then a single value or a multi-value LDAP field can be used. If the user has multiple other email addresses then a multi-value LDAP field must be used. |
ldap.2.schema.user-second-card-id-field | The LDAP field that contains the user's second card id. |
ldap2.schema.user-department-field | The LDAP field that contains the user's department. |
ldap2.schema.user-office-field | The LDAP field that contains the user's office location. |
ldap2.schema.user-card-id-field | The LDAP field containing the user's primary card ID value. |
ldap2.schema.user-second-card-id-field | The LDAP field containing the user's secondary card ID value. |
ldap2.schema.user-name-search |
The LDAP search to retrieve the user. The
IMPORTANT: The search must include the |
ldap2.schema.group-name-field | The LDAP field that contains the group's name. |
ldap2.schema.group-member-field | The LDAP field that contains the group members. |
ldap2.schema.group-search |
The LDAP search to retrieve the group. The
IMPORTANT: The search must include the |
ldap2.schema.posix-groups |
If |
ldap2.schema.home-directory-field | The LDAP field that contains the user's home folder path. |
Table D.2. LDAP Secondary Sync Source Config entries
When a particular LDAP server type is selected (e.g. Novell eDirectory), PaperCut MF uses the following defaults to query the LDAP server. These defaults can be used as a starting point for customizing the LDAP searches or for supporting other server types.
If the LDAP server is configured to support Unix based authentication then this schema type can be used. The following defaults are used.
Config name | Default value |
---|---|
ldap.schema.user-name-field |
|
ldap.schema.user-full-name-field |
|
ldap.schema.user-email-field |
|
ldap.schema.user-department-field |
|
ldap.schema.user-office-field | [not set] |
ldap.schema.user-name-search |
|
ldap.schema.group-name-field |
|
ldap.schema.group-member-field |
|
ldap.schema.group-search |
|
ldap.schema.posix-groups |
|
ldap.schema.home-directory-field | [not set] |
Table D.3. Unix / Open Directory LDAP default settings
If the LDAP server is a Novell eDirectory then the following defaults are used.
Config name | Default value |
---|---|
ldap.schema.user-name-field |
|
ldap.schema.user-full-name-field |
|
ldap.schema.user-email-field |
|
ldap.schema.user-department-field |
|
ldap.schema.user-office-field |
|
ldap.schema.user-name-search |
|
ldap.schema.group-name-field |
|
ldap.schema.group-member-field |
|
ldap.schema.group-search |
|
ldap.schema.posix-groups |
|
ldap.schema.home-directory-field | [not set] |
Table D.4. Novell eDirectory LDAP default settings
If the LDAP server is a Microsoft Active Directory then the following defaults are used.
Config name | Default value |
---|---|
ldap.schema.user-name-field |
|
ldap.schema.user-full-name-field |
|
ldap.schema.user-email-field |
|
ldap.schema.user-department-field |
|
ldap.schema.user-office-field |
|
ldap.schema.user-name-search |
|
ldap.schema.group-name-field |
|
ldap.schema.group-member-field |
|
ldap.schema.group-search |
|
ldap.schema.posix-groups |
|
ldap.schema.home-directory-field |
|
Table D.5. Active Directory LDAP default settings
© Copyright 1999-2015. PaperCut Software International Pty Ltd. All rights reserved.