We use cookies on our website to ensure we provide you with the best experience on our website. By using our website, you agree to the use of cookies for analytics and personalized content.This website uses cookies. More Information
It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda Web Application Firewall

How to Configure Multi-domain LDAP Authentication

  • Last updated on

To set up LDAP authentication for multiple domains, create an LDAP authentication service and add other Active Directory (AD) domain details to the LDAP authentication service. You can add a maximum of ten (10) domains to the LDAP authentication service. If the domain name is appended with the user name, the user's credentials are validated with that domain for authentication. If the user fails to append the domain name, the user is authenticated using the default LDAP database configured for that Service.

Configure the Barracuda Web Application Firewall for Multi-domain LDAP Authentication

As an example, consider you have two (2) domains, “wafqa-1.cudaindia.local” with the domain alias “wafqa-1”, and “waf.cuda.com” with the domain alias “waf”, and both domains have users. The web server is under the "wafqa-1.cudaindia.local" domain and the users in the "waf.cuda.com" domain need access to the "wafqa-1.cudaindia.local" domain.

  1. Go to the ACCESS CONTROL > Authentication Services page.
  2. Click the LDAP tab and enter the details of the LDAP server “wafqa-1.cudaindia.local” with a domain alias of “wafqa-1”. Click Add.
  3. In the Existing Authentication Services section, click Add next to the LDAP authentication service you created in Step 2. The Add Domain to LDAP Service window appears.
  4. In the Add Domains to LDAP Service window, enter the details of the LDAP server “waf.cuda.com” with domain alias “waf” and click Add.
  5. Repeat Step 3 and 4 to add more domains.

To set up multi-domain authentication with an existing LDAP authentication service:

  1. Go to the ACCESS CONTROL > Authentication Services page.
  2. In the Existing Authentication Services section, identify the LDAP authentication service to which you want to enable multi-domain authentication, and click Edit next to it.
  3. Enter the value for Domain Alias and click Save.
  4. Click Add next to the LDAP authentication service, enter the details of the other LDAP server with domain alias in the Add Domains to LDAP Service window and click Add.
  5. Repeat Step 4 to add more domains.

 

Last updated on