LDAP Server

DSM Version

LDAP Server

Features

  • Centrally secures and manages identities of users and groups within an organization
  • Automates and integrates identity and access control into IT operations
  • Integrates Google Workspace Single Sign-On, allowing users to access the Google Workspace services with their accounts and passwords stored on LDAP Server
  • Supports the Consumer server, a read-only LDAP server that synchronizes the LDAP database in real time with another Synology LDAP Server
  • Allows LDAP users to change their passwords on Synology NAS clients in the same LDAP directory
  • Supports scheduled backup and manual restoration of the LDAP database

Specifications

  • Based on LDAP version 3 (RFC2251)
  • Maximum user count: 20,000
  • Maximum group count: 20,000
  • Supported LDAP clients: Linux and macOS
  • Supports batch import of users through .csv files
  • Supports nested groups
  • Supports backing up and restoring LDAP directory configurations via Hyper Backup
  • All LDAP users belong to the "users" group
  • System reserved users and groups shown as below cannot be deleted:
    • Default users: "admin"
    • Default groups: "administrators", "users", "Directory Operators", "Directory Clients", "Directory Consumers"
  • The way of grouping LDAP users configured for setting up Consumer servers:
    • Add these users to the "Directory Consumers" group
    • Should not add these users to the "Directory Operators" and "Directory Clients" groups

Limitations

  • The Consumer server only supports joining to a Provider/Consumer server created by Synology LDAP Server