You can use an LDAP service to provide a directory of users and groups to import into an organization. If you do not specify an LDAP service, you must create a user account for each user in the organization. LDAP options can only be set by a system administrator and cannot be modified by an organization administrator.

For more information about entering custom LDAP settings, see Configuring System LDAP Settings.


  1. Click the Manage & Monitor tab and click Organizations in the left pane.
  2. Right-click the organization name and select Properties.
  3. Click the LDAP Options tab.
  4. Select the new source for organization users.
    Option Description
    Do not use LDAP Organization administrator creates a local user account for each user in the organization. You cannot create groups if you select this option.
    VCD system LDAP service Use the LDAP service for the vCloud Director system as the source for organization users and groups.
    Custom LDAP service Connect the organization to its own private LDAP service.
  5. Provide any additional information required by your selection.
    Option Action
    Do not use LDAP Click OK.
    VCD system LDAP service (Optional) Type the distinguished name of the organizational unit (OU) to use to limit the users that you can import into the organization and click OK. If you do not enter anything, you can import all users in the system LDAP service into the organization.
    Note: Specifying an OU does not limit the LDAP groups you can import. You can import any LDAP group from the system LDAP root. However, only users who are in both the OU and the imported group can log in to the organization.
    Custom LDAP service Click the Custom LDAP tab, type the custom LDAP settings for the organization, and click OK.


System administrators and organization administrators who are currently logged in cannot import users and groups using the modified LDAP options until the cache for their current session expires or they log out and log in again.