%BOOK_ENTITIES; ]>

You can use an external LDAP server such as Microsoft Active Directory or OpenLDAP to authenticate &PRODUCT; end-users. In order to do this you must: Set your LDAP configuration within &PRODUCT; Create &PRODUCT; accounts for LDAP users To set up LDAP authentication in &PRODUCT;, open the global settings page and search for LDAP Set ldap.basedn to match your sever's base directory. Review the defaults for the following, ensure that they match your schema. ldap.email.attribute ldap.firstname.attribute ldap.lastname.attribute ldap.username.attribute ldap.user.object Optionally you can set the following: If you do not want to use anonymous binding you can set ldap.bind.principle and ldap.bind.password as credentials for your LDAP server that will grant &PRODUCT; permission to perform a search on the LDAP server. For SSL support set ldap.truststore to a path on the file system where your trusted store is located. Along with this set ldap.truststore.password as the password that unlocks the truststore. If you wish to filter down the user set that is granted access to &PRODUCT; via the LDAP attribute memberof you can do so using ldap.search.group.principle. Finally, you can add your LDAP server. To do so select LDAP Configuration from the views section within global settings. Click on "Configure LDAP" and fill in your server's hostname and port.