circle-check
GLPI 10.0.24 and 11.0.6 are now available
Download herearrow-up-right
search
45-day free trialGLPI releases lifecycle

googleSetting up LDAPS Google

This procedure guides you step-by-step through configuring LDAPS with Google and connecting it to GLPI.

circle-exclamation

LDAPS with Google requires a specific license. Please refer to Google Supportarrow-up-right to verify if your license is sufficient.

4 steps are necessary to correctly configure your LDAPS.

  1. Add a new LDAP client

  2. Configure access permissions

  3. Create a certificate

  4. Connect your LDAP client to GLPI

hashtag
Add a new LDAP client

hashtag
Application Creation

Add a Google LDAP client

  • From the Admin Consolearrow-up-right, navigate to Apps > LDAP

  • Click Add Client

  • Name the client and add a description if needed

  • Click Continue

hashtag
Configure Access Permissions

You must then set the level of access this LDAP client will have.

Manage application permissions

hashtag
Verify user credentials

When a user tries to sign in to the application, this setting specifies which organisational units and groups the LDAP client can access to verify the user’s credentials. Users who aren’t in a selected organisational unit and groups can’t sign in to the application.

More info

hashtag
Read user information

This setting specifies which organisational units the LDAP client can access to retrieve additional user information.

More info

You can also select the attributes that can be read by the LDAP client:

  • System attributes

  • Custom public attributes

  • Custom private attributes

Click View attributes to check each category of each attribute.

hashtag
Read group information

This setting specifies whether the LDAP client can check a user’s group memberships for purposes, such as a user’s role in the application.

More info

Once all these options are configured, click Add LDAP Client.

hashtag
Create a Certificate

  • The certificate is logically generated upon application creation. If not, click on your application and go to the Authentication section.

Generate a certificate

  • Then click Generate new certificate.

  • Download the certificate and its key, transfer it to the GLPI server, and unzip it into the desired folder.

Download the certificate

hashtag
Connect Your LDAP Client to GLPI

Add LDAPS from GLPI

  • From Setup> Authentication > LDAP Directory, click + Add

  • Enter the information related to your LDAPS:

    • Server: ldaps://ldap.google.com

    • Port: 636

    • BaseDN: Enter your domain (e.g., dc=my_domain,dc=com)

  • Click + Add

  • From the Advanced Information tab, enter the path to the certificate and its key in the corresponding fields (refer to the previous step if needed).

Add certificates from GLPI

hashtag
Test LDAPS

  • Go to the Test tab to verify that your LDAPS is functioning correctly.

Test your LDAPS

You can now go to Administration > Users > LDAP Directory Link and import your users and groups.

Import users from LDAPS
PreviousSetting up LDAPNextAutomatic actions

Last updated