Before manually adding an LDAP server, it is important that you are familiar with search bases, object classes, and attributes.
- In Jamf Pro, click Settings in the sidebar.
- In the System section, click LDAP servers .
- Click New.
- Select Configure Manually and click Next.
- Use the Connection tab to configure how Jamf Pro connects to the LDAP server.
- Click the Directory Service pop up menu and select the Display Name that matches the name of the Active Directory domain or domain controller server for easy identification.
- Set Directory Service to "Microsoft's Active Directory".
- Set Server to the Active Directory domain name.
- Configure Server and Port with the following settings:
Enter the Active Directory domain name
For an unencrypted connection, enter: 389
For an SSL encrypted connection, enter: 636. If you are using an SSL connection, update either the root CA certificate for the Active Directory domain or the Jamf Pro server's certificate signed by the root CA certificate.
- Select Enable LDAP Proxy Server and choose the server already enrolled in Jamf Pro and enter the port number allowing internet traffic to Jamf Infrastructure Manager.
- Set Authentication Type to Simple.
- Set Distinguished Username to the distinguished name of the service account and enter its password.
- Use the Mappings tab to specify object class, search base data, and map attributes.Note:
To map Jamf Pro buildings and departments to a directory value, the corresponding building or department values must first be manually created in Jamf Pro. For more information, see Buildings and Departments.
- Click Save .