Skip to main content
Skip table of contents

LDAP Integration

You can integrate the QueryPie service with an LDAP server for user authentication and user and group management.

Setting Up LDAP Integration and Synchronization in QueryPie

image-20240723-063144.png

Administrator > General > User Management > Authentication > LDAP

  1. Navigate to the Administrator > General > User Management > Authentication in QueryPie.

  2. Select LDAP in the Authentication Type field.

  3. Enter the authentication details and attribute information for LDAP integration. Refer to the detailed descriptions below for each attribute.

  4. To configure synchronization, check “Use Synchronization with the Authentication System”.

  5. If you want to enable automatic synchronization, set Replication Frequency to “Scheduling”.

  6. Click the Dry Run button to verify the entered integration details.

  7. Save the configuration by clicking Save Changes button.

  8. Click Synchronize button to sync users from LDAP.

To synchronize the default user status as “Inactive”:

  • By default, when setting up LDAP synchronization, the user's default status is set to "Active."

  • By default, users synchronized through LDAP are set to Active. However, if there are many users to synchronize or you want to manage QueryPie access for each user individually through LDAP login, you can set the user status to Inactive during synchronization

  • Activate the Additional Settings > Make New Users Inactive by Default option at the bottom of the synchronization settings. When this option is enabled, users will be synchronized with the default status set to Inactive during the initial synchronization or when new users are added.

image-20240723-063618.png

LDAP User Attribute Mappings

Attribute

Description

Example

Server URL

Enter the URL value of the LDAP server you want to set up.

ex. ldaps://ldap.example.com

Bind DN

Enter a Bind DN for LDAP server authentication.

Password

Enter the password for LDAP server authentication.

User Base DN

Specify the user Base DN value from the LDAP server.

ex. dc=example, dc=com

User Search Filter

Define the filter values for retrieving users.

ex. objectclass=inetOrgPerson

User ID

Specify the attribute to use as the user's identifier.

ex. uid, cn

User Email

Specify the attribute to use as the user's email.

ex. mail, email

Anonymous

Set whether anonymous users can authenticate.

LDAP Group Attribute Mappings

To synchronize user groups, enable the “Use Group” option and enter the following information:

LDAP Group Integration Properties

Attribute

Description

Example

Group Base DN

Enter the group Base DN value for the LDAP server.

ex. dc=example, dc=com

Group Search Filter

Define the filter values for retrieving groups.

ex. objectclass=posixGroup

Membership Type

If the group contains user information

  • Include user information in group entries

ex. member, uniqueMember, memberUid,

If the user contains group information

  • Include group information in user entries

ex. gIdNumber

Group ID

Define the property value to use as the group's identifier

ex. gidnumber

Signing In With LDAP Authentication in QueryPie

image-20240723-063737.png
  1. You can view synchronized users and groups in the Administrator > General > User Management > Users or Groups menu.

  2. On the Sign-in page, you can enter your LDAP credentials to log in.

Please note that users and groups support one-way synchronization from LDAP to QueryPie. Synchronized users and groups cannot be modified or deleted within QueryPie.

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.