dependency-track/docs/_docs/getting-started/ldap-configuration.md

---
title: LDAP Configuration
category: Getting Started
chapter: 1
order: 10
---

Dependency-Track has been tested with multiple LDAP servers. The following are
some example configurations that are known to work with the default schema of
each server implementation.

#### Microsoft Active Directory Example

```ini
alpine.ldap.enabled=true
alpine.ldap.server.url=ldap://ldap.example.com:3268
alpine.ldap.basedn=dc=example,dc=com
alpine.ldap.security.auth=simple
alpine.ldap.auth.username.format=%s@example.com
alpine.ldap.bind.username=cn=ServiceAccount,ou=Users,dc=example,dc=com
alpine.ldap.bind.password=mypassword
alpine.ldap.attribute.name=userPrincipalName
alpine.ldap.attribute.mail=mail
alpine.ldap.groups.filter=(&(objectClass=group)(objectCategory=Group))
alpine.ldap.user.groups.filter=(member:1.2.840.113556.1.4.1941:={USER_DN})
alpine.ldap.groups.search.filter=(&(objectClass=group)(objectCategory=Group)(cn=*{SEARCH_TERM}*))
alpine.ldap.users.search.filter=(&(objectClass=user)(objectCategory=Person)(cn=*{SEARCH_TERM}*))
```

#### ApacheDS Example

```ini
alpine.ldap.enabled=true
alpine.ldap.server.url=ldap://ldap.example.com:389
alpine.ldap.basedn=dc=example,dc=com
alpine.ldap.security.auth=simple
alpine.ldap.auth.username.format=%s
alpine.ldap.bind.username=uid=ServiceAccount,ou=system
alpine.ldap.bind.password=mypassword
alpine.ldap.attribute.name=cn
alpine.ldap.attribute.mail=mail
alpine.ldap.groups.filter=(&(objectClass=groupOfUniqueNames))
alpine.ldap.user.groups.filter=(&(objectClass=groupOfUniqueNames)(uniqueMember={USER_DN}))
alpine.ldap.groups.search.filter=(&(objectClass=groupOfUniqueNames)(cn=*{SEARCH_TERM}*))
alpine.ldap.users.search.filter=(&(objectClass=inetOrgPerson)(cn=*{SEARCH_TERM}*))
```

#### Fedora 389 Directory Example

```ini
alpine.ldap.enabled=true
alpine.ldap.server.url=ldap://ldap.example.com:389
alpine.ldap.basedn=dc=example,dc=com
alpine.ldap.security.auth=simple
alpine.ldap.auth.username.format=%s
alpine.ldap.bind.username=cn=directory manager
alpine.ldap.bind.password=mypassword
alpine.ldap.attribute.name=uid
alpine.ldap.attribute.mail=mail
alpine.ldap.groups.filter=(&(objectClass=groupOfUniqueNames))
alpine.ldap.user.groups.filter=(&(objectClass=groupOfUniqueNames)(uniqueMember={USER_DN}))
alpine.ldap.groups.search.filter=(&(objectClass=groupOfUniqueNames)(cn=*{SEARCH_TERM}*))
alpine.ldap.users.search.filter=(&(objectClass=inetOrgPerson)(cn=*{SEARCH_TERM}*))
```

#### NetIQ/Novell eDirectory Example

```ini
alpine.ldap.enabled=true
alpine.ldap.server.url=ldaps://ldap.example.com:636
alpine.ldap.basedn=o=example
alpine.ldap.security.auth=simple
alpine.ldap.auth.username.format=%s
alpine.ldap.bind.username=cn=ServiceAccount,o=example
alpine.ldap.bind.password=mypassword
alpine.ldap.attribute.name=uid
alpine.ldap.attribute.mail=mail
alpine.ldap.groups.filter=(&(objectClass=groupOfUniqueNames))
alpine.ldap.user.groups.filter=(&(objectClass=groupOfUniqueNames)(uniqueMember={USER_DN}))
alpine.ldap.groups.search.filter=(&(objectClass=groupOfUniqueNames)(cn=*{SEARCH_TERM}*))
alpine.ldap.users.search.filter=(&(objectClass=inetOrgPerson)(cn=*{SEARCH_TERM}*))
```
Added v3.3 doc updates 2018-10-25 10:50:27 -05:00			`---`
			`title: LDAP Configuration`
			`category: Getting Started`
			`chapter: 1`
Advertise official Helm chart in docs Signed-off-by: nscuro <nscuro@protonmail.com> 2024-04-07 19:37:44 +02:00			`order: 10`
Added v3.3 doc updates 2018-10-25 10:50:27 -05:00			`---`

			`Dependency-Track has been tested with multiple LDAP servers. The following are`
			`some example configurations that are known to work with the default schema of`
			`each server implementation.`

			`#### Microsoft Active Directory Example`

			```ini
			`alpine.ldap.enabled=true`
			`alpine.ldap.server.url=ldap://ldap.example.com:3268`
			`alpine.ldap.basedn=dc=example,dc=com`
			`alpine.ldap.security.auth=simple`
			`alpine.ldap.auth.username.format=%s@example.com`
#285 doc correction 2019-05-10 13:37:52 -05:00			`alpine.ldap.bind.username=cn=ServiceAccount,ou=Users,dc=example,dc=com`
Added v3.3 doc updates 2018-10-25 10:50:27 -05:00			`alpine.ldap.bind.password=mypassword`
			`alpine.ldap.attribute.name=userPrincipalName`
			`alpine.ldap.attribute.mail=mail`
			`alpine.ldap.groups.filter=(&(objectClass=group)(objectCategory=Group))`
			`alpine.ldap.user.groups.filter=(member:1.2.840.113556.1.4.1941:={USER_DN})`
#294 - Updated default application.properties and documentation detailing two new LDAP properties 2019-06-02 00:58:45 -05:00			`alpine.ldap.groups.search.filter=(&(objectClass=group)(objectCategory=Group)(cn={SEARCH_TERM}))`
			`alpine.ldap.users.search.filter=(&(objectClass=user)(objectCategory=Person)(cn={SEARCH_TERM}))`
Added v3.3 doc updates 2018-10-25 10:50:27 -05:00			```

			`#### ApacheDS Example`

			```ini
			`alpine.ldap.enabled=true`
			`alpine.ldap.server.url=ldap://ldap.example.com:389`
			`alpine.ldap.basedn=dc=example,dc=com`
			`alpine.ldap.security.auth=simple`
			`alpine.ldap.auth.username.format=%s`
			`alpine.ldap.bind.username=uid=ServiceAccount,ou=system`
			`alpine.ldap.bind.password=mypassword`
			`alpine.ldap.attribute.name=cn`
			`alpine.ldap.attribute.mail=mail`
			`alpine.ldap.groups.filter=(&(objectClass=groupOfUniqueNames))`
			`alpine.ldap.user.groups.filter=(&(objectClass=groupOfUniqueNames)(uniqueMember={USER_DN}))`
#294 - Updated default application.properties and documentation detailing two new LDAP properties 2019-06-02 00:58:45 -05:00			`alpine.ldap.groups.search.filter=(&(objectClass=groupOfUniqueNames)(cn={SEARCH_TERM}))`
			`alpine.ldap.users.search.filter=(&(objectClass=inetOrgPerson)(cn={SEARCH_TERM}))`
Added v3.3 doc updates 2018-10-25 10:50:27 -05:00			```

			`#### Fedora 389 Directory Example`

			```ini
			`alpine.ldap.enabled=true`
			`alpine.ldap.server.url=ldap://ldap.example.com:389`
			`alpine.ldap.basedn=dc=example,dc=com`
			`alpine.ldap.security.auth=simple`
			`alpine.ldap.auth.username.format=%s`
			`alpine.ldap.bind.username=cn=directory manager`
			`alpine.ldap.bind.password=mypassword`
			`alpine.ldap.attribute.name=uid`
			`alpine.ldap.attribute.mail=mail`
			`alpine.ldap.groups.filter=(&(objectClass=groupOfUniqueNames))`
			`alpine.ldap.user.groups.filter=(&(objectClass=groupOfUniqueNames)(uniqueMember={USER_DN}))`
#294 - Updated default application.properties and documentation detailing two new LDAP properties 2019-06-02 00:58:45 -05:00			`alpine.ldap.groups.search.filter=(&(objectClass=groupOfUniqueNames)(cn={SEARCH_TERM}))`
			`alpine.ldap.users.search.filter=(&(objectClass=inetOrgPerson)(cn={SEARCH_TERM}))`
Added v3.3 doc updates 2018-10-25 10:50:27 -05:00			```

			`#### NetIQ/Novell eDirectory Example`

			```ini
			`alpine.ldap.enabled=true`
			`alpine.ldap.server.url=ldaps://ldap.example.com:636`
			`alpine.ldap.basedn=o=example`
			`alpine.ldap.security.auth=simple`
			`alpine.ldap.auth.username.format=%s`
			`alpine.ldap.bind.username=cn=ServiceAccount,o=example`
			`alpine.ldap.bind.password=mypassword`
			`alpine.ldap.attribute.name=uid`
			`alpine.ldap.attribute.mail=mail`
			`alpine.ldap.groups.filter=(&(objectClass=groupOfUniqueNames))`
			`alpine.ldap.user.groups.filter=(&(objectClass=groupOfUniqueNames)(uniqueMember={USER_DN}))`
#294 - Updated default application.properties and documentation detailing two new LDAP properties 2019-06-02 00:58:45 -05:00			`alpine.ldap.groups.search.filter=(&(objectClass=groupOfUniqueNames)(cn={SEARCH_TERM}))`
			`alpine.ldap.users.search.filter=(&(objectClass=inetOrgPerson)(cn={SEARCH_TERM}))`
Added v3.3 doc updates 2018-10-25 10:50:27 -05:00			```