Home → Admin Manual → Authentication → Staff LDAP / Active Directory Authentication

3.3. Staff LDAP / Active Directory Authentication

LDAP (Lightweight Directory Access Protocol) allows you to authenticate staff members against an Active Directory or other LDAP-based directory. Follow these steps to configure LDAP authentication in your HelpSpot application.

Steps to Configure LDAP Authentication

1. Access the LDAP Configuration Settings

1. Log in to your HelpSpot admin dashboard.
2. Navigate to Admin in the top menu bar.
3. Click on Settings.
4. Click on Authentication,
5. Choose LDAP/Active Directory.

2. Enter LDAP Configuration Details

You will need to enter the following details in the LDAP/Active Directory section:

Username Prefix

• Example: uid= or cn=
• For OpenLDAP where a full dn is often required, enter 'uid=' or 'cn=' to allow you to form the full dn needed. Leave empty for Active Directory.

Account Suffix

• Example: @mydomain.local
• This is typically the domain name your Active Directory is associated with. It is not always needed depending on configuration. For OpenLDAP type configurations where a full dn is needed you'll often need to include a path like this with a leading comma: ,ou=Users,dc=mydomain,dc=local.

Base DN

• Example: DC=mydomain,DC=local
• The Base DN (Distinguished Name) is the starting point for your LDAP queries, defining where in the directory tree your users are located.

Domain Controller

• Example: dc01.mydomain.local
• Enter the hostname or IP address of your domain controller.

Use SSL

• Check this box if your LDAP server is configured to use SSL (LDAPS).

Use TLS

• Check this box if your LDAP server is configured to use TLS for secure communication.

Custom CA Certificate

• If your LDAP server requires a custom Certificate Authority (CA) certificate, provide the path to the certificate file here.