Users : Offloading HTTP authentication & authorization : Configuring queries for remote end-user accounts : Configuring LDAP queries : Example for a configuration for AD
 
Example for a configuration for AD
The following sample values are part of an LDP query for a Microsoft Active Directory (AD) domain server.
Setting
Value
Notes
Common Name Identifier
sAMAccountName
In most cases, you use the Common Name Identifier sAMAccountName as the container. In some cases, userPrincipalName is used, especially if there is a domain forest.
Distinguished Name
(Base DN)
OU=CONTAINER,
DC=DOMAIN,DC=SUFFIX
 
 
 
Specifies the Base DN from which the LDAP query starts.
Filter
(&(objectCategory=person) (objectClass=user) (sAMAccountName=*))
If Common Name Identifier is userPrincipalName, change sAMAccountName to userPrincipalName.
User DN
user@domain.com
This example uses the UPN (User Principle Name) instead of a bind DN.