7.1 Configuring LDAP Connections

You will need Site Administrator role to configure LDAP connections.

Add LDAP Connections

To create a new LDAP connection:

    1. Access to Site Administration. Click on Authentication Integration tab
    2. Click on Add icon on the toolbar

qTest - Site Admin - Authentication Integration - Add

  1. In the right hand side input form, you can change the default connection name
  2. You will need to input the required fields as described in this section
  3. Click on Save button

  Note: You can create and activate multiple connections to various LDAP servers.

Edit LDAP Connections

To edit an LDAP connection:

  1. Select an existing LDAP connection from the left hand side panel
  2. In the right hand side input form, you can change its name and configurations as described in this section
  3. Click on Save button

Configuring LDAP Connections

To configure an LDAP connection, you will need to input the following information:

  1. URL: input an URL in this format: hostname:port
    • Hostname: The host name or IP of your directory server
    • Port: The port on which your directory server is listening

      Important: Do not enter the protocol.

  2. Base DN: The root distinguished name (DN) to use when running queries against the directory server. Examples:
    o=example,c=com
    		

    cn=users,dc=ad,dc=example,dc=com
    		

      Hint: For Microsoft Active Directory, specify the base DN in the following format: dc=domain1,dc=local. You will need to replace the domain1 and local for your specific configuration. Microsoft Server provides a tool called ldp.exe which is useful for finding out and configuring the the LDAP structure of your server.

  3. Search Base: This value is used in addition to the base DN when searching and loading users. If no value is supplied, the subtree search will start from the base DN. Example:
    ou=Users
    		
  4. Search Filter: The filter to use when searching user objects. Example:
    (&(objectCategory=Person)(sAMAccountName=*))
    		

      Hint: More examples can be found here.

  5. User DN:The distinguished name of the user that the application will use when connecting to the directory server. Examples:
    cn=administrator,cn=users,dc=ad,dc=example,dc=com
    		

    cn=user,dc=domain,dc=name
    		

      Note: Ensure that this is an administrator user for the LDAP engine. For example, in Active Directory the user will need to be a member of the built-in Administrators group.

  6. Password: The password of the user specified above
  7. Mapping fields: you will need to map qTest user properties (Username, First name, Last name, and Email) with corresponding LDAP attributes
  8. If your LDAP server is using SSL connection, check on Use SSL connection
  9. If you are using Active Directory, check on Is Active Directory
  10. Click on Test connection button to verify if qTest is able to connect to your LDAP server
  11. Activate the connection by switching Activation status on

      Note: If qTest fails to connect to your LDAP server, you will not be able to activate the connection

qTest - Site Admin - Authentication Integration - LDAP Input form