Lightweight Directory Access Protocol (LDAP) is a protocol that enables easy access to and management of user information. It's commonly used in organizations where there is a need for centralized information, authentication, and authorization. Rocket.Chat supports LDAP integration, allowing seamless connection with your organization's Active Directory or Identity Management System, ensuring secure transmission of sensitive information.
This section guides you through the configuration details and examples to help you set up your own LDAP integration for user authentication and authorization.
Key features of LDAP integration
Data Accessibility: LDAP serves as a gateway to access vital data about your server or company, ensuring that user information is seamlessly integrated and consistently updated across platforms.
Advanced Settings: The Rocket.Chat integration goes beyond basic connectivity. It includes features like:
Background Sync: Keeps user data synchronized without manual intervention, ensuring that changes in the LDAP directory are automatically reflected in Rocket.Chat.
Roles Mapping from Groups: This feature allows for the automatic assignment of roles in Rocket.Chat based on group memberships in your LDAP directory, facilitating permission management.
Auto-Logout: Enhances security by automatically logging out users from Rocket.Chat when certain conditions in the LDAP directory are met.
Advanced User Data Sync: Provides a comprehensive synchronization of user data, ensuring that all relevant attributes and settings are consistently mirrored in Rocket.Chat.
For an overview of the LDAP features available across our various plans, refer to Authentication Across Plans.
Configure LDAP authentication
Go to Administration > Workspace > Settings > LDAP
Enable LDAP and add configurations to connect with your LDAP server.
LDAP quick actions
The following actions can be located at the top section of the LDAP settings interface.
Test Connection: This will use your provided values and test for a connection. It will test the authentication and encryption but not the syncing settings.
Test LDAP Search: Searches and notify if a user is found as configured in the user search page.
Sync Now: Syncs your LDAP data based on the Data Sync configurations.
These actions are exclusively available to workspaces subscribed to any of Rocket.Chat's premium plans.
If you do not receive an alert confirming these actions, always consult the log under Reports to check for their success or to identify any errors.
Integrating LDAP with Rocket.Chat not only simplifies user management but also strengthens security and ensures data consistency across your digital ecosystem. As we move to the next sections, we will delve deeper into the configuration process, guiding you through the steps to seamlessly integrate LDAP with your Rocket.Chat workspace.