Integrating GLPI Authentication With LDAP/Active Directory (AD)

1. Overview


Mostly people use LDAP or Active Directory as a central place for user authentication and identity management software. Many services normally are integrated with LDAP or Active Directory such email and computer login. If the service is not integrate with LDAP or Active Directory, users may end up with having many accounts and passwords for their daily work. LDAP or Active Directory identity management software have account and password policy which it could enhance security in the internal company. GLPI IT asset management software has its own built-in user authentication mechanism, but it also can be integrated with LDAP or an Active Directory domain identity management software for user authentication.

In this instruction will show how to integrated GLPI IT asset management software authentication with Active Directory (AD) identity management software.

2. Prerequisites


In this article of integrating GLPI IT asset management software with Active Directory (AD) identity management software, it is supposed that:

a. You have an Active Directory identity management software server in place up and running.
b. You have already installed GLPI IT asset management software server. Please refer to this link. Installing GLPI For IT and Asset Management on RHEL/CentOS 7

3. GLPI Active Directory Authentication Setting


Login to your GLPI IT asset management software with admin privilege user account. Then, navigate to “Setup” and click on “Authentication”.

Another windows should appears as the following. Then, we need to click on “LDAP directories” to configure Active Directory authentication.

In the “LDAP directories” setting screen, we have to input some information as the following. Enter a name for this authentication setting. Select “Yes” from the drop-down list of Default server” and “Active” option.

Enter the IP address or FQDN of Active Directory server in the Server box. On the BaseDN box type in the distinguished name of of any Organization Unit that you want to gain access to GLPI IT asset management software. In the RootDN box, we need to type in the  distinguished name of any Active Directory account.

For best practice, we should create a dedicated user account for this purpose. In our case now, we use an Active Directory account name “ldap user”. In the Password box, type in the password of the user account name “ldap user”. Finally, click “Save” button to save the setting.

We can test if our LDAP directories setting is working fine by going to Test tab and then click on Test.

If we get the successful result that means GLPI IT asset management software is now integrated with Active Directory identity management software server.

We can try to login to GLPI IT asset management software using Active Directory user account now and we should get a successfully login result.

7. Conclusion


That’s all about how to integrate your GLPI IT asset management software to authentication with LDAP/Active Directory (AD)  identity management software from Tech Space KH. GLPI IT asset management software is very useful for network inventory software, server asset management or computer asset management, hardware asset management, software asset management, and IT asset tracking. Hopefully, you can find this guide informative. If you have any questions or suggestions you can always leave your comments below. I will try all of my best to review and reply them.