Add an Active Directory Auth Module

An Active Directory Auth Module can be used to add a secondary authentication relationship between Access Gateway and an Active Directory instance.

  1. Add an Auth Module as described in Add an Auth Moduleand select Active Directory.
    After selecting Active Directory the Add New Auth Module opens and is configured for Active Directory.
  2. Enter the following details:
    FieldDescriptionExample
    NameName used to identify the Auth ModuleActive Directory AM

    Secure LDAP

    When checked, use LDAPS instead of LDAP

    Defaults to unset

    HostURL to LDAP Server and portmyActiveDirectory.example.com

    Port

    Port for use with Active Directory

    389

    Bind User

    Username used to perform reads and writes

    CN=Administrator,CN=Users,DC=someuser,DC=info

    Bind User Password

    Bind User Password

    password

    Base

    The base DN from which you perform the search

    CN=Users,DC=domain,DC=tld

    User Search Attribute

    The filter used to match records returned from the Search DN

    accountname

    Attributes DN

    Set of attributes returned from Active Directory and sent as SAML attributes to application

    cn, mail, name, userPrincipalName

    Description

    Optional. Enter description

    Active Directory Auth Module

  3. Click Not Validated ()when complete. Okta Access Gateway validates the connection. If the validation is successful, the button changes to Valid().
  4. Click Okay.