Help

Permissions for the JAMF LDAP Server Account

justin_gray
New Contributor II

Posted on ‎09-14-2022 11:29 AM

Can anyone please clarify what permissions are required for the LDAP Server Account?

What functions does it perform aside from user/group lookup and authentication?

TIA

0 Kudos
4 REPLIES 4

sdagley
Esteemed Contributor II

Posted on ‎09-14-2022 12:26 PM

@justin_gray It's just read-only lookup and auth

0 Kudos

justin_gray
New Contributor II
In response to sdagley

Posted on ‎09-16-2022 08:42 AM

If that's the case, do you know what account is used or what mechanism is responsible for AD joins? If I recall, there was a change with OS X where a regular user account could not join to the domain.

0 Kudos

sdagley
Esteemed Contributor II
In response to justin_gray

Posted on ‎09-16-2022 10:08 AM

@justin_gray The account you use for LDAP lookups should not be the same account you use for AD binding as the latter will definitely require different permissions. You should ask your AD team about that. You should also consider whether or not you actually need to bind your Macs to AD.

0 Kudos

justin_gray
New Contributor II
In response to smith536

Posted on ‎09-15-2022 08:44 AM

What issue are you encountering?

0 Kudos