Configuring a Directory Service (DS)

IBM Aspera Shares on Demand supports the Lightweight Directory Access Protocol (LDAP) and you can configure it to connect to a directory service. The following directory service databases are supported:

Shares on Demand already has a default, local database. When you add local users, they are automatically be added to the database found at Admin > Accounts > Directories > Local Database. For information on setting up local users, see Adding Local Users.

  1. To add a directory service account, go to Admin > Accounts > Directories. Click New.
  2. Complete the form.
    Option Description

    Directory Type

    Select a directory service type from one of the following options:

    • Active Directory (AD)
    • Apple Open Directory
    • Fedora Directory Server
    • Open LDAP

    Name

    Type a name for this directory service.

    Description

    Type a description for this directory service.

    Host

    The directory's address and port number. By default, LDAP secured by simple TLS uses port 636, unsecured LDAP uses port 389, unsecured global catalog uses port 3268, and global catalog over SSL uses port 3269.

    Base DN

    The search treebase, for example, dc=myCompany,dc=com for myCompany.com.

    Authentication Credentials

    • Anonymous Bind
    • Simple Bind

    If Simple Bind is selected, you must type your directory service user name, which is typically a Distinguished Name (DN), (for example, CN=Administrator,CN=Users,DC=myCompany,DC=com) and your directory service password.

    Encryption

    • Unencrypted (Default port 389)
    • Simple TLS (Default port 636)
    Note: Aspera recommends selecting Simple TLS to secure your server. By default, LDAP traffic is transmitted unsecured. You can make LDAP traffic confidential and secure by enabling TLS.
  3. Click Create Ldap config.