Skip to content

Authentication

LDAP authentication

LDAP (Lightweight Directory Access Protocol) is a software protocol that allows anyone to find organizations, individuals, and other resources in a network.

Create an authentication mode

  1. On the VNCdirectory homepage, click Directory.
  2. In the left navigation bar, click Show more > LDAP authentication.
  3. At the top, click New authentication mode (LDAP).

  4. Specify the following fields:

    • Name: give the directory a name.
    • Host: the LDAP hostname.
    • Port: the LDAP port.
    • LDAP: select which LDAP to use to access the directory.
    • Account: enter a username that has read access to the LDAP, otherwise leave this field blank if your LDAP can be read anonymously.
    • Password: password for the account.
    • Base DN: the top level DN of your LDAP directory tree (example: dc=example,dc=com).
    • LDAP filter: filters can be used to limit the number of users or groups that are allowed to access an application.
    • Timeout (in seconds): if the LDAP provider does not receive an LDAP response within the specified period, it aborts the read attempt.
    • On-the-fly user creation: by checking this, any LDAP user will have his VNCdirectory account automatically created the first time he logs into VNCdirectory. Otherwise, you will have to manually create the user in VNCdirectory for each LDAP user who wants to log in.

  5. Under the Attributes section, specify the following fields:

    • Login attribute: the login name under which a user logs in and is authenticated.
    • Firstname attribute: Attribute for first name.
    • Lastname attribute: Attribute for last name.
    • Email attribute: Attribute for email address.

  6. Click CREATE.

Delete an authentication mode

  1. On the VNCdirectory homepage, click Directory.
  2. In the left navigation bar, click Show more > LDAP authentication.
  3. Click the trash bin icon next to the authentication mode you want to delete.
  4. When prompted, click OK confirming that you want to delete the authentication mode.

Instance Certificates

Create a certificate

  1. On the VNCdirectory homepage, click Directory.
  2. In the left navigation bar, click Show more > Instance Certificates.
  3. At the top, click + New Certificate.
  4. Enter Serial number and Instance subdomain for the cettificate.
  5. Enter Description for the certificate.

  6. Under the Certificate Information section, specify the following fields:

    • Organization name. The name of the organization that administers or owns the application.
    • (Optional) Organization country code.
    • (Optional) Organization city.
    • (Optional) Organization state.
    • (Optional) Organization unit.
    • (Optional) Organization common name.

  7. Under the Validity Information section, specify the start and expiry date for the certificate.

  8. Check the box next to a required product.
  9. Click CREATE.

The certificate is now successfully created and will be available in the Certificates list.

Edit certificate information

There are 2 ways to edit certificate information.

Way 1. Using the pencil icon.

  1. On the VNCdirectory homepage, click Directory.
  2. In the left navigation bar, click Show more > Instance Certificates.
  3. Click the pencil icon next to the certificate you want to edit.
  4. Edit certificate information.
  5. Click SAVE.

Way 2. Going to the Certificate overview page.

  1. On the VNCdirectory homepage, click Directory.
  2. In the left navigation bar, click Show more > Instance Certificates.
  3. Click the eye icon next to the certificate you want to edit.
  4. Go the Info tab.
  5. Clcik Edit.
  6. Edit certificate information.
  7. Click SAVE.

View certificate information

  1. On the VNCdirectory homepage, click Directory.
  2. In the left navigation bar, click Show more > Instance Certificates.
  3. Click the eye icon next to the certificate you want to view.