LDAP Server Settings

Set up Synology NAS as an LDAP server to provide account authentication service.

After the LDAP Server package is installed and running on your Synology NAS, go to Main Menu > LDAP Server to enable the service.

Enable LDAP Server

The Provider-Consumer architecture is the ideal solution if you have multiple clients located in different physical areas. All Consumer servers will replicate data from the Provider server periodically and will act as the main LDAP servers for the local clients. Even when the Provider server is down or the connection between the Provider/Consumer servers is lost, the local clients will not be affected as long as the Consumer server remains functional.

There are two types of servers in LDAP Server:

To enable LDAP Server as the Provider server and provide LDAP service, follow the steps below:

  1. Go to the Settings tab. Tick Enable LDAP Server.
  2. Tick As the Provider server.
  3. In the FQDN (Fully Qualified Domain Name) field, specify the domain name for the LDAP database.
  4. Enter the password of Bind DN (see below) in the Password field.
  5. Confirm the password.
  6. Click Apply.

To enable LDAP Server as the Consumer server to replicate data from the Provider server, follow the steps below:

  1. Go to the Settings tab. Tick Enable LDAP Server.
  2. Tick As the Consumer server.
  3. In the Provider address field, enter the domain name or IP address of the Provider server's LDAP database.
  4. In the Encryption field, specify the connection encryption. By default, the encryption will be SSL/TLS.
  5. In the Bind DN field, enter the Bind DN (see below) of the Provider server's LDAP database.
  6. Enter the password of Bind DN (see below) in the Password field.
  7. When LDAP Server acts as the Consumer server, its connection status with the Provider server will be shown.
  8. Click Apply.

When the setup is complete, you will see the following information under Authentication Information:

If LDAP clients wish to bind to your LDAP Server, they should specify the Base DN to connect to the LDAP database, and then authenticate with the Bind DN of root or an LDAP administrator account.

Note:

Configure Connection Settings

Click the Connection Settings button to manage the following settings:

Note: