SURF Research Access Management provides LDAP, the Lightweight Directory Access Protocol, as an interface for provisioning users and groups to applications.
At the application in SRAM, go to Details & settings, then LDAP. You will need the LDAP URL, base DN and bind DN to connect to SRAM.
On the same page, the 'Reset the LDAP password' link resets the password. The password will only be shown once.
- The SRAM LDAP server requires a TLS connection with modern TLS versions and ciphers, so you will need a fairly recent LDAP client that supports at least TLS version 1.2 with strong ciphers.
- Some application providers connect the application to their own LDAP server, and sync the SRAM LDAP server information to their own.
- Refer to the LDAP directory structure for available entities, attributes and the directory structure.
- Refer to the IP addresses documentation to make sure your application can reach the SRAM LDAP endpoint.