LDAP

LDAP refers to directory services that support the LDAP protocol. TNAS devices join the LDAP server (also known as the "directory server") as LDAP clients, allowing domain users to directly log in to TNAS using their domain accounts and passwords. Joining LDAP takes approximately 30 seconds, after which domain users will be successfully imported.

Joining an LDAP Server

• Enable LDAP Client: Enabling this function will prevent further joining to the AD domain.
• LDAP Server Location: Fill in the IP address of the LDAP server.
• Base DN: Specify the location within the LDAP directory.
• Bind DN/Account: Enter the Bind DN or administrator account for the LDAP server.
• Password: Input the password for the Bind DN or administrator account of the LDAP server.
• Update Interval: Set the frequency for automatically updating domain users and domain groups. You can also switch to the domain users and domain groups page and click refresh to manually update the list. By default, domain users and domain groups are updated every 10 minutes.

LDAP User Permission Management

Please go to Control Panel > Domain/LDAP > Domain Users or Domain Groups, select the LDAP user, and click the "Edit" button to set the LDAP user's permissions for shared folders. When there is a conflict in the permissions set for LDAP users, the permission rules are: Deny > Read/Write > Read Only.

Note

When logging in to the TNAS device using an LDAP user, please enter the complete LDAP username, including the domain prefix.