Layer7 API Management

Expand all | Collapse all

How to integrate Microsoft Active Directory with API Gateway

Jump to Best Answer
  • 1.  How to integrate Microsoft Active Directory with API Gateway

    Posted 05-16-2017 06:29 AM

    We have 9.2 version API Gateway. We need to integrate Microsoft Active Directory with the API Gateway.

    We have installed the Active Directory on the Windows server2008 and we need to create an LDAP on the gateway which will be connecting to the Active Directory on the Windows server. 
    If its possible please suggest us how to do it

     

    Thanks!!!!!



  • 2.  Re: How to integrate Microsoft Active Directory with API Gateway



  • 3.  Re: How to integrate Microsoft Active Directory with API Gateway

    Posted 05-16-2017 09:02 AM

    Thank you for your assistance. I have seen the do cops for the LDAP in the API gateway. 
    I have also followed the step for the LDAP creation but there is an error while testing the connection 

    ERROR: Cannot search using CN=users,dc=com.



  • 4.  Re: How to integrate Microsoft Active Directory with API Gateway
    Best Answer

    Posted 05-16-2017 10:25 AM

    what is your domain name, lets say if its example.com should you not be using dc=example,dc=com

     

    else try something like this from the CMD of the system where AD is installed

     

    dsquery user dc=example,dc=com -name user1

     

    in this example my domain is example.com and user name is user1, edit the command as per requirement

     

    Usually below is how i set up my env

    search base : dc=example,dc=com

    Bind DN = example\administrator



  • 5.  Re: How to integrate Microsoft Active Directory with API Gateway

    Posted 05-17-2017 03:15 AM

    Is there any mutual authentication required between gateway and windows server like exchange of certificates between both for connectivity of active directory with the gateway???



  • 6.  Re: How to integrate Microsoft Active Directory with API Gateway

    Posted 05-18-2017 06:53 PM

    Hi Suraj_94,

    LDAP is different with LDAPS, I believe you're talking about LDAPS. There is a KB article about setting LDAPS,

    Adding an LDAPS identity provider via the Layer 7 Policy Manager 

     

    Regards,

    Mark