Skip to main contentClick to view our Accessibility Statement or contact us with accessibility-related questions.

How To Configure Lightweight Directory Access Protocol (LDAP) Settings

Product support for
WorkCentre 5945/5955, WorkCentre 5945i/5955i
Article ID
KB0220492
Published
2021-03-23

NOTE: Lightweight Directory Access Protocol (LDAP) is a protocol used to process queries and updates to an LDAP information directory, on an external server. LDAP can also be used for network authentication and authorization. LDAP directories are heavily optimized for read performance. Use this page to define how the printer retrieves user information from an LDAP directory.

NOTE: This solution requires knowledge of the network on which the printer is installed and may require the assistance of a System or Network Administrator.

NOTE: Xerox is not responsible for managing a customer’s Network, Computers, or Servers. Xerox not responsible for installing or set up of non-Xerox software in a customer’s environment. It is the responsibility of the customer to install, set up, or configuration of the LDAP Server. Xerox however can assist in inputting the LDAP settings provided by the customer into a printer’s CentreWare IS webpage.

NOTE: The LDAP Server page displays the current LDAP servers configured for your printer. You can configure a maximum of 9 LDAP servers for your printer.


To Configure Server Information:

  1. Access CentreWare Internet Services (CWIS)..

  2. Select the Properties tab.

  3. Select Connectivity on the left side of the window.

  4. Select Setup.

  5. Scroll down to the Protocol section.

  6. Select Edit next to LDAP.

  7. Click on Add New.

  8. Select the preferred address type in the Server Information Section: IPv4 Address, IPv6 Address or Host Name.

    NOTE: DNS Servers must be Configuredon the device when connecting to the LDAP Server using a Host Name.

  9. Enter a name to identify the LDAP server into the Friendly Name field.

  10. Enter the appropriately formatted address or host name of your server and change the default port number as needed.

    NOTE: The default port number for LDAP is 389 and Secure LDAP is 636. If unsure of the port used for LDAP file sharing on your network, Contact your System or Network Administrator.

  11. Select an LDAP server type from the LDAP Server dropdown.

    • Exchange: for use with Microsoft Exchange.

    • Domino: for use with Lotus Domino

    • NDS: for use with Novell NetWare Directory Service

    • ADS: for use with Microsoft Active Directory Service.

    • Netscape: for use with Netscape or Open LDAP.

  12. Select Apply.


To Configure LDAP Optional Information:

  1. Enter the root path of the search directory in the Search Directory Root field using Base DN format.

  2. Specify the login credentials required to access the LDAP directory.

    • None: instructs the printer to access the repository without providing credentials.

    • Logged-in User: instructs the printer to log in to the repository using the credentials of the logged-in user.

    • System: instructs the printer to use specific credentials when accessing the repository. If you select System, enter the credentials in the User Name and Password fields. To update an existing password, select Select to save new password.

      NOTE:       Once the LDAP server's login name and password have been set up and saved from this page, you can enable the Authenticated User setting (without a name or password) to force authenticated users to authenticate to the LDAP server before obtaining information from same (as might be the case with Scan to Home).

  3. Scroll down to the Secure LDAP Connection section.

  4. Select Enable Secure Connection (LDAPS) if the server is using a Secure LDAP (SSL or TLS) Connection.

    1. To allow the printer to validate certificates, select Validate Server Certificate.

    2. Under Root/Intermediate Trusted Certificates, select the Certificate required by the Server..

    3. Select View Root/Intermediate Trusted Certificates to view the selected certificate details, or save the certificate to your computer.

      IMPORTANT: If the LDAP Server has encryption enabled, make sure a certificate issued from the LDAP server certificate authority is installed on the printer.

  5. Under Maximum Number of Search Results, to define the maximum number of addresses returned that match search criteria, enter a number from 5-100. The default is 25. To use the maximum number of search results specified by the LDAP server, select Use LDAP Server Maximum.

  6. To allow the printer to use the LDAP server current settings, under Search Timeout, select Use LDAP Server Timeout.
    To specify a time, select Wait, and enter the number of seconds from 5-100 that the printer waits before timing out. The default is 30 seconds.

    NOTE: If you are having trouble retrieving results from your LDAP server, use the Wait option.

  7. If your primary LDAP server is connected to additional servers, to include those LDAP servers in your searches, select LDAP Referrals.

  8. Under Perform Query on, select an option.

    • Surname and Given NameFields: instructs the printer to query the configured surname and given name fields.

    • Mapped Name Field: instructs the printer to query the configured name field. After you apply this setting, click User Mappings to define the field mapping.

  9. Select Apply.

  10. Configure other LDAP settings as required, such as LDAP User MappingsandConfigure LDAP Contexts.