Manage Users

You can manage users and account/password related settings at LDAP Server > User.

User

The User tab provides options to manage users on LDAP Server.

To create a user:

Follow the steps below to create a user account:

  1. Click Create. This will launch the User Creation Wizard window.
  2. Specify the following information for the LDAP user and then click Next:
  3. Tick the checkbox(es) to add the user to the following built-in group(s) and click Next:
  4. If necessary, edit additional user attributes and then click Next.
  5. Click Apply to complete the setup. The distinguished name of the user in the LDAP database is uid=[username],cn=[users],[Base_DN]

Note:

You can set an account expiration date or prohibit a user from changing the password.

To import users:

Follow the steps below to import user accounts.

  1. Click the arrow next to Create. Select Import users.
  2. Select a file to upload. The file should contain user information in CSV format with tab-separated values.
  3. Confirm the preview is correct and click OK to import users.

File Formatting:

When preparing a file to import, different user accounts should be recorded on separate rows and each value should be separated by a tab in the following order (from left to right):

To edit a user:

Select a user account and double click on it or click Edit to edit the account settings.

To remove a user:

Select a user and click Delete to remove the user.

To activate a user:

Select a user account that is currently locked, disabled, or expired, and click Activate to change its status to Normal.

Advanced

The Advanced tab provides options to modify advanced user settings.

To configure advanced user settings:

Tick the corresponding boxes according to your needs:

Note:

To enable password expiration:

To enhance the security for DSM user accounts, you can set up password expiration policies to enforce regular and periodical password change for users.

Note:

Once password expiration has been enabled, all passwords older than the period you specified will expire.

Auto Lock

The auto lock feature helps improve the security of your Synology NAS by locking the accounts with too many failed login attempts. This helps reduce the risk of accounts being broken into using brute-force attacks.

To enable auto lock: