- Centrally secures and manages identities of users and groups within an organization
- Automates and integrates identity and access control into IT operations
- Integrates Google Workspace Single Sign-On, allowing users to access the Google Workspace services with their accounts and passwords stored on LDAP Server
- Supports the Consumer server, a read-only LDAP server that synchronizes the LDAP database in real time with another Synology LDAP Server
- Allows LDAP users to change their passwords on Synology NAS clients in the same LDAP directory
- Supports scheduled backup and manual restoration of the LDAP database
LDAP Server
Features
Specifications
- Based on LDAP version 3 (RFC2251)
- Maximum user count: 20,000
- Maximum group count: 20,000
- Supported LDAP clients: Microsoft Windows, Linux, and macOS
- Supports batch import of users through .csv files
- Supports nested groups
- Supports backing up and restoring LDAP directory configurations via Hyper Backup
- All LDAP users belong to the "users" group
- System reserved users and groups shown as below cannot be deleted:
- Default users: "admin"
- Default groups: "administrators", "users", "Directory Operators", "Directory Clients", "Directory Consumers"
- The way of grouping LDAP users configured for setting up Consumer servers:
- Add these users to the "Directory Consumers" group
- Should not add these users to the "Directory Operators" and "Directory Clients" groups
Limitations
- The Consumer server only supports joining to a Provider/Consumer server created by Synology LDAP Server