Installation / Configuring External Authentication Providers |
Aspera® Shares™ supports the Lightweight Directory Access Protocol (LDAP), and you can configure it to connect to a directory service. The following directory service databases are supported:
Aspera Shares already has a default, local database. When you add local users, they will automatically be added to Admin > Accounts > Directories > Local Database. For information on setting up local users, see Adding Local Users.
Option | Description |
---|---|
Directory Type |
Select a directory service type from one of the following options:
|
Name |
Type a name for this directory service. |
Description |
Type a description for this directory service. |
Host |
The directory's address and port number. By default, unsecured LDAP uses port 389, unsecured global catalog uses port 3268, and global catalog over SSL uses port 3269. |
Base DN |
The search treebase, for example, dc=myCompany,dc=com for myCompany.com. |
Authentication Credentials |
If Simple Bind is selected, you must type your directory service user name, which is typically a Distinguished Name (DN), for example, CN=Administrator,CN=Users,DC=myCompany,DC=com)and directory service password. |
Encryption |
Note: Aspera recommends selecting Simple TLS to secure your server.
By default, LDAP traffic is transmitted unsecured. You can make
LDAP traffic confidential and secure by enabling TLS.
|
After adding a DS to Shares, you can configure specific settings for your DS users and groups.
To set specific permissions for an individual DS user, click the corresponding Edit button. For details on editing a DS user, see Setting Permissions for Individual DS Users.
To configure DS users' security settings from their individual account pages, see Setting Permissions for Individual DS Users.
Clicking Add Share displays a list of nodes and shares that are currently configured in Aspera Shares.
Click Authorize to authorize a share. You can modify
the directory's permissions for browsing, transferring, and performing file
operations within it. The default permission is browse.
To edit these permissions or disallow the directory's access to the share,
click edit.
Select permissions that directory users have for the authorized share. For example, everyone in this directory is allowed to browse the share. However, they cannot download, upload, perform any file operations, or receive notifications about content availability within the share. After modifying the settings, click Update. You may disallow access to this share by clicking Delete.