Introduction

This page explains the configuration of LDAP authentication with an LDAP server in your jtel ACD. The Active Directory Integration (Over SSL) / LDAP(S) Integration provides login to jtel ACD Portal using credentials stored in your Active Directory / other LDAP-based directory.

It allows users to authenticate against various Active Directory / LDAP implementations like Azure Active Directory.

Prerequisites

The webservers can reach the LDAP Server via the configured port.

LDAP Port389
LDAPS Port636

Configuration Requirements

DataValueNote
Active Directory NameMicrosoft Entra ID

The name of the type of Active Directory that will be integrated to the ACD

jtel Portal URL

http(s)://<jtel Portal DNS name>

The URL used to connect to your jtel ACD Web-Interface
(<sAMAccountName>, <displayName>)

MaxMustermann, MaxM

Login name and display name of the account
Password*****Account password
LDAP Server

ldap(s)://<LDAP Server DNS name>

The LDAP Server URL
CN


Common Name
OU


Organizational Unit
DC


Domain Component

Security

As sysadmin, change the parameter 'ACD.LDAP.Security.Level' if required. The default setting is 'DIGEST-MD5' and the only other possible setting is to leave the field empty. Leaving it empty enables default LDAP provider behaviour.

Enabling LDAP

As sysadmin, change the parameter 'Portal.Login.LDAP.Enabled' to 1 to enable LDAP, or to 0 to disable it.

Configuration

LDAP Server Configuration

Go to 'Menu → User Data → Client Master Data → Options → Authentication → LDAP Server'

Configure your LDAP Server URL here.

For LDAPS, configure the URL with ldaps://, for LDAP, configure ldap://


LDAP User Name

Go to 'Menu → User Data → Users → Edit → User→ LDAP User Name'

Add the LDAP Users Display Name into this field.

Testing

To test LDAP authentication using your jtel ACD you can use the following commands:

cd /home/jtel/shared/JTELCarrierPortal/Utils/Install/LdapTester/
./ldap-test.h ldaps://subdomain.domain.local/CN=ldaptestuser, OU=User, DC=domain, DC=local <sAMAccountName> <password>

Success

A successful test should look something like this:

java -cp ldap-tester-1.0.jar jtel.tools.ldap.App ldaps://subdomain.domain.local/CN=ldaptestuser,OU=Sales,DC=domain,DC=local <sAMAccountName> <password>

authenticateByLDAP - SUCCESS java.naming.provider.url=ldaps://subdomain.domain.local:636,java.naming.factory.initial=com.sun.jndi.ldap.LdapCtxFactory,step=1,java.naming.security.principal=jtelsvc,java.naming.security.authentication=DIGEST-MD5,java.naming.security.credentials=*
Authenticated OK!
  • No labels