Infisical supports the use of Simple Binding to connect with your LDAP provider.

Prerequisites

You will need the following information to establish an LDAP connection:
  • LDAP URL - The LDAP/LDAPS URL to connect to (e.g., ldap://domain-or-ip:389 or ldaps://domain-or-ip:636)
  • Binding DN/UPN - The Distinguished Name (DN), or User Principal Name (UPN) if supported, of the principal to bind with (e.g., ‘CN=John,CN=Users,DC=example,DC=com’)
  • Binding Password - The password to bind with for authentication
  • CA Certificate - The SSL certificate (PEM format) to use for secure connection when using ldaps:// with a self-signed certificate
Depending on how you intend to use your LDAP connection, there may be additional requirements:
For Password Rotation, the following requirements must additionally be met:
  • You must use an LDAPS connection
  • The binding user must either have:
    • Permission to change other users passwords if rotating directory users’ passwords
    • Permission to update their own password if rotating their personal password

Setup LDAP Connection in Infisical

  1. Navigate to the App Connections tab on the Organization Settings page. App Connections Tab
  2. Select the LDAP Connection option. Select LDAP Connection
  3. Select the Simple Bind method option and provide the details obtained from the previous section and press Connect to Provider. Create LDAP Connection
  4. Your LDAP Connection is now available for use. Assume Role LDAP Connection