Configuring a Secure LDAP Gateway for an Active Directory

You can configure a secure Lightweight Directory Access Protocol (LDAP) gateway.


  1. From the navigation pane, go to Manage > Security > Identity servers.

    The Identity Servers page appears.

  2. Click the identity server (Active Directory) that you want to edit.

    The identity server page appears.

  3. Click the edit edit button.

    The Edit domain dialog box appears.

  4. Edit the following options:

    • NetBIOSName: The NetBIOS name of the domain (for example, mydomain).

    • Name: The fully qualified domain name (for example,


      • You can specify a custom port with the following format:, where XXXX is the port.

      • If Use secure LDAP is selected (see below), the domain name is the name of the domain controller (for example,

    • User name: A user account with a minimum of read access to the domain.


      Consider using a service account instead of an employee account, in order to prevent disruptions if the employee account is disabled.

    • Password: The password for the user account.

    • Use secure LDAP: Select this option to enable secure LDAP for additional network security with the external domain.


      This option is only available when the external domain is configured to use the secure LDAP. If this protocol is enabled from the CommCell Console, but not configured from the external domain, the feature is not enabled.

  5. Click Save.

    A push install job is triggered, as the system attempts to install the LDAP gateway package on selected proxy machines. You can monitor its status from the Jobs page.

    Upon completion, users can attempt Active Directory logins.