Request A Quote
  • Home
  • Blog
  • Implementing LDAP for Enhanced Directory Services on PrimeLink C9065/C9070
August 22, 2024

LDAP

Lightweight Directory Access Protocol (LDAP) is a protocol used to process queries and updates to an information directory, also known as an LDAP directory, stored on an external server. LDAP directories are optimized heavily for read performance. Use this page to define how the device retrieves user information from an LDAP directory.

CONFIGURING LDAP SERVER SETTINGS

To configure LDAP server settings:

  1. In the Embedded Web Server, click Properties > Connectivity > Protocols > LDAP > LDAP Server.

  2. For Server Information, type the appropriately formatted main and backup LDAP server addresses, host names, and port numbers. The default port number is 389.

  3. For LDAP Server, select the type of LDAP server.

  4. In the Optional Information area, specify settings, as needed:

    • For Search Directory Root, type the search directory root path using Base DN format.

    • For Login Credentials to Search Entries, select Remotely Authenticated User, or System.

    • If necessary, type the login name, then type and retype the password.

    • For Maximum Number of Search Results, type the maximum number of addresses that can be returned matching the search criteria. Type a number between 5-100.

    • For Search Timeout, select Use LDAP Server Timeout or Wait. If you select Wait, type a duration between 5-120 seconds.

    • If your primary LDAP server is connected to other LDAP servers, to include the servers in your searches, for LDAP Referrals, select Enabled.

    • For LDAP Referral Hop Limit, type the maximum number of consecutive LDAP referrals. Specify a limit between 1-5.

  5. In the Perform Query on area, select an option if necessary:

    • Mapped Name Field: This option specifies how the fields are mapped.

    • Surname and Given Name Fields: This option searches for the last name and first name of the user.

  6. Click Apply.

DEFINING USER MAPPINGS

LDAP servers provide different results to search queries depending on how user data is mapped. Editing the mapping allows you to fine-tune server search results.

Note: If you are using Internet Fax, ensure that the Internet Fax field is not set to No attribute type that can be used. This setting prevents the LDAP Address Book from appearing on the Internet Fax screen on the device control panel. For the Internet Fax setting, select Mail.

To define LDAP user mappings:

  1. In the Embedded Web Server, click Properties > Connectivity > Protocols > LDAP > LDAP User Mappings.

The information that you entered on the LDAP Server tab is summarized in the Server Information area.

  1. To send a test query, in the User Name field, type the name of the user for whom you want to search, then click Search. Any matching user information appears.

  2. If necessary, to remap fields, for Imported Heading, use the menus.

Note: Headings are defined by your LDAP server schema.

  1. Click Apply.

CONFIGURING LDAP CUSTOM FILTERS

To configure LDAP filters:

  1. In the Embedded Web Server, click Properties > Connectivity > Protocols > LDAP > Custom Filters.

  2. In the User ID Query Filter field, type the LDAP search string or filter that you want to apply.

Note:

  • The filter defines a series of conditions that the LDAP search must fulfill to return the information you want.

  • The search string should be formatted as LDAP objects inside of parentheses. For example, to find the user with a sAMAccountName of Bob, type (objectClass=user)(sAMAccountName=Bob)

  1. For Email Address Book Filter, select Enable Filter.

  2. In the Email Address Book Filter field, type the LDAP search string or filter that you want to apply.

Note: Format the search string as LDAP objects placed inside parentheses. For example, to find all users that have an email attribute (mailenabled), type (objectClass=user)(mail=*).

  1. For Fax Address Book Filter, select Enable Filter. Then type the LDAP search string or filter that you want to apply.

  2. For Internet Fax Address Book Filter, select Enable Filter. Then type the LDAP search string or filter that you want to apply.

  3. Click Apply.

PERFORMING AN LDAP CONNECTION TEST

To perform the LDAP connection test:

  1. In the Embedded Web Server, click Properties > Connectivity > Protocols > LDAP > Connection Test.

  2. Type a name for the test.

  3. Click Search.

The test results appear in Search Result area.

FAQs

How to configure LDAP authentication with Active Directory?

To configure LDAP authentication with Active Directory on the Xerox PrimeLink® C9065/C9070:

  • Access the Embedded Web Server of your Xerox device.

  • Navigate to Properties > Connectivity > Protocols > LDAP > LDAP Server.

  • Enter the primary and backup LDAP server addresses and port numbers. The default port is 389.

  • Select Active Directory as the LDAP server type.

  • In the Optional Information section, configure the Base DN, login credentials, and other settings as needed.

  • Ensure the LDAP Referrals option is enabled if your primary LDAP server connects to other LDAP servers.

  • Click Apply to save your settings.

How do I test my Xerox® LDAP connection?

To test your Xerox® LDAP connection:

  • Go to the Embedded Web Server on your Xerox® PrimeLink® C9065/C9070.

  • Navigate to Properties > Connectivity > Protocols > LDAP > Connection Test.

  • Enter a name for the test.

  • Click Search to initiate the test.

  • Review the results displayed in the Search Result area to confirm the connection is functioning correctly.

What is LDAP on a printer?

LDAP (Lightweight Directory Access Protocol) on a Xerox® printer, such as the PrimeLink® C9065/C9070, is used to retrieve and manage user information from an LDAP directory service. It enables the printer to authenticate users and integrate with existing directory services for streamlined access and management. This helps in simplifying user authentication and improving directory-based functionalities on the device.

How to configure LDAP in the application?

To configure LDAP in an application on the Xerox® PrimeLink® C9065/C9070:

  • Access the Embedded Web Server.

  • Navigate to Properties > Connectivity > Protocols > LDAP.

  • Enter the LDAP server details, including the Base DN and authentication settings.

  • Configure any custom LDAP filters or mappings as required for your application.

  • Click Apply to save the configuration.

  • Ensure that the application or service you are integrating is configured to communicate with the LDAP server according to these settings.

Brian Cantor

Brian Cantor is the President of Flynn's Office Solutions, a Xerox Authorized Sales Agent and Accredited Managed Print Services Provider in New York City. For over 13 years, Brian has been focused on helping organizations and their people get documents from A to B efficiently and securely using Xerox hardware and software solutions. Prior to Flynn's, Brian was a management consultant at Deloitte helping to deliver multi-million dollar technology projects across the Software Development Life Cycle. You can find Brian on LinkedIn and Twitter

Leave a comment

Your email address will not be published.

brian image
Questions? Free Consultation? Ask Brian

    Thank you for contacting us!

    We have received your message and will contact you within 1 business day. Please also feel free to reach us at 212-339-8700. Have a great day!