How Does LDAP Integration Take Place in the V10 Interface?

The Privileged Access Manager solution interacts with LDAP-compliant Directory servers to identify users and learn about their security. With transparent user management made possible by this, the system can provide users and organizations automatically.


The user authentication and mapping to the corporate LDAP server may be done using this method. Additionally, LDAP connectivity and mapping may be utilized by users with Vault Admins capabilities using a clear, straightforward interface. Check that each rule has a Directory Map before reconfiguring the LDAP integration in the PrivateArk Client. Then, before launching the LDAP integration procedure, split any regulations set in the same Directory Map.


If you want to have access to the specific following permissions to manage the LDAP, it is compulsory to become a member of the Vault Admins group.  

  • Audit Users
  • Manage Directory Mapping

Link Up With a New Domain: If you want to build directory mapping, you need to explain the LDAP domain to which you want to associate the whole setup. To connect to an exclusive domain, you need to follow the following steps -




1. When you gain the permissions after becoming a member of the Vault Admins group, click on User Provisioning > LDAP Integration.


  • You have to initiate the whole procedure again if the LDAP integration was not expounded yet.
  • Now, click on New Domain once you are on the LDAP integration page.
  • You must fill up certain information in the defining domain to move further.
  • Fill in the information like domain name, secure connection, and bind user name, password, and domain base context.
  • When you open the select domain controllers option, the detected domains will be displayed.

2. First, for mapping, you need to choose or select one or more than one domain controllers.

3. Now proceed to the creation of directory mapping; click on the Define map to define the name of the user or group to identify it in the Active Directory.

4. You will need to have different aspects of information for creating Maps, such as Vault Admins, Safe managers, auditors, and users.

5. When you come to the Summary page, it will list all the defined mapping and directory details. It is basically to see whether the information is correct or not. If the mapping is accurate, then move to Save.

Edit Directory Mapping - Default directory mappings are produced when you define a domain in PVWA, depending on how the domain has been setup.


  • Directory mappings can be modified.
  • Editing directory mappings
  • To modify a mapping, expand the domain it is in by clicking Edit after selecting Administration > LDAP Search Integration in the PVWA.
  • You may view the map's attributes, requirements, and Vault authorizations that are assigned to users that are created using this map on the Edit directory mapping page.

Addition of Directory Mapping -  For a directory mapping to be added:


1. Click Administration > LDAP Integration in the PVWA.

2. Click Add Mapping on the tab under LDAP Integration.

3. Complete the required fields on the Define map properties screen, then click Next.

4. Select the LDAP group and click Next on the Set mapping scope screen.

5. Click to grant the users on the Set vault authorization screen after choosing the permissions.

Comments

Popular posts from this blog

Security of Zero Trust Model in Business Infrastructure

Secure Your Data From Hacker With RBAC System

Zero Trust vs. Traditional Security: The Power of Automation and AI in Modern Cybersecurity