LDAP Authentication#
Prerequisites#
- Ensure you have access to your organization's LDAP server.
- Obtain the LDAP Base DN, Bind DN, Bind Password, and server URL.
Configure LDAP in MSR#
-
Access MSR Administration Interface:
- Log in as an administrator and navigate to
Administration → Configuration.
- Log in as an administrator and navigate to
-
Set Auth Mode to LDAP:
- Under the Authentication tab, select LDAP from the
Auth Mode dropdown.
- Under the Authentication tab, select LDAP from the
-
Provide LDAP Server Details:
- Auth Mode: LDAP
- LDAP URL: Enter the server URL (for example,
ldap://example.comorldaps://example.comfor secure connections). - LDAP Search DN and LDAP Search Password: Used when a user logs in to Harbor with their LDAP credentials.
Example:cn=admin,dc=example.com - LDAP Base DN: The subtree under which Harbor searches for users.
Example:dc=example.com - LDAP Filter: Filter used to locate LDAP/AD users.
Example:objectclass=user - LDAP UID: Attribute used to match a user (for example,
uidorcn). - LDAP Scope: Choose one of Subtree, Base, or OneLevel.
- LDAP Verify Cert: Uncheck this if using a self-signed or untrusted certificate.
-
Test LDAP Connection:
- Use the Test LDAP Server button to validate the connection.
Troubleshoot any issues before proceeding.
- Use the Test LDAP Server button to validate the connection.
-
Save Configuration:
- Click Save to apply changes.
Manage LDAP users in MSR#
- After LDAP is configured, MSR automatically authenticates users based on their LDAP credentials.
- To assign user roles, go to Projects and assign LDAP-based users to project roles.