1. Enter the IP address or hostname and port of the LDAP server into the Server Address field. If you want to encrypt the communication between SSB and the LDAP server, in case of SSL/TLS, enter 636 as the port number, or in case of STARTTLS, enter 389 as the port number.

    To add multiple servers, click and enter the address of the next server. If a server is unreachable, SSB will try to connect to the next server in the list in failover fashion.

    		 Caution:

    If you will use a TLS-encrypted with certificate verification to connect to the LDAP server, use the full domain name (for example ldap.example.com) in the Server Address field, otherwise the certificate verification might fail. The name of the LDAP server must appear in the Common Name of the certificate.

  2. Enter the name of the DN to be used as the base of the queries into the Base DN field (for example, DC=demodomain,DC=exampleinc).

  3. Enter the name of the DN where SSB should bind to before accessing the database into the Bind DN field.

    For example: CN=Administrator,CN=Users,DC=demodomain,DC=exampleinc.

    NOTE: SSB accepts both pre-win2000-style and Win2003-style account names (User Principal Names), for example, administrator@example.com is also accepted.

    NOTE: Do not use sAMAccountName, as the bind DN expects a CN.

  4. Enter the password to use when binding to the LDAP server into the Bind Password field.

    NOTE: The syslog-ng Store Box (SSB) appliance accepts passwords that are not longer than 150 characters. The following special characters can be used:

    ! " # $ % & ' ( ) * + , - . / : ; < > = ? @ [ ] ^ - ` { | }

  5. Select the type of your LDAP server in the Type field. Select Active Directory to connect to Microsoft Active Directory servers, or Posix to connect to servers that use the POSIX LDAP scheme.