You can configure Orchestrator to connect to a working LDAP server on your infrastructure to authenticate users and to manage user permissions.


LDAP authentication is deprecated and will not be supported in future versions.

If you are using secure LDAP over SSL, Windows Server 2008 or 2012, and AD, verify that the LDAP Server Signing Requirements group policy is disabled on the LDAP server.


Multiple domains that are not in the same tree, but have a two-way trust, are not supported and do not work with Orchestrator. The only configuration supported for multi-domain Active Directory is domain tree. Forest and external trusts are not supported.