Workspace ONE UEM supports open source LDAP for directory services. For instance, similar to Microsoft Active Directory, Novell e-Directory, Lotus Domino, we have Samba OpenLDAP server for Directory services. Samba OpenLDAP is a widely used LDAP server in Linux environment.

If you choose to select any other LDAP server other than Active Directory, Novell e-Directory or Lotus Domino, you can refer through the following configuration tips that covers the most critical steps while configuring open source LDAP directory service.

Bind Authentication Type

You are required to select the type of bind authentication to enable the AirWatch server to communicate with the domain controller.

You can select Anonymous, Basic, Digest, Kerberos, NTLM, or GSS-NEGOTIATE. If unsure start by setting the bind authentication type to Basic. You will know if your selection is not correct when you click Test Connection.

Bind User Name

Enter the credentials used to authenticate with the domain controller. This account (which the entered user name identifies) allows a read-access permission on your directory server and binds the connection when authenticating users. It is considered to be a best practice to use the full base distinguished name for the bind username. For example, you can use CN=admin,DC=domain,DC=com.

User Search Filter

In the User Tab, enter the search parameter that is used to associate user accounts with Active Directory accounts and make sure your user search filter is appropriately configured. You could expect appropriate results if you set the search filter as (&(objectCategory=person)(sAMAccountName={EnrollmentUser})).