LDAP Integration
Vulnotes supports LDAP authentication, letting your users log in with their existing Active Directory or LDAP credentials instead of maintaining separate passwords.
Configuration
Go to Administration > Settings > Authentication and enable the LDAP provider. You will need to configure:
- Server URL - your LDAP server address (e.g.
ldap://dc.company.com:389orldaps://dc.company.com:636) - Bind DN - the distinguished name used to connect to the LDAP server
- Bind password - the password for the bind account
- Search base - where to search for users (e.g.
ou=Users,dc=company,dc=com) - Search filter - the LDAP filter to match users (e.g.
(sAMAccountName=))
Attribute mapping
Map LDAP attributes to Vulnotes user fields:
- Username attribute - the LDAP field that contains the username
- Email attribute - the LDAP field for the user's email
- Display name attribute - the LDAP field for the user's full name
How login works
When LDAP is enabled, users see an LDAP login option on the login page. They enter their LDAP credentials, and Vulnotes verifies them against the LDAP server. If authentication succeeds and the user does not already exist in Vulnotes, an account is automatically created with the default role.
Administrators can then adjust the role and team assignment for LDAP users like any other user.
Testing the connection
After entering your LDAP configuration, use the Test Connection button to verify that Vulnotes can reach and bind to your LDAP server before saving.