Product Documentation

To create an iOS LDAP policy

Oct 20, 2015

The iOS LDAP policy provides information about an LDAP server to use and account information if required. The policy also provides a set of LDAP search policies to use when querying the LDAP server.

  1. In the Device Manager web console, on the Policies tab, under iOS, click Configurations.
  2. In the New Configuration menu, click Profiles and Settings > LDAP.
  3. In the LDAP Configuration Creation dialog box, enter the policy identifier (name), display name, company name, and an optional comment.
  4. Click the LDAP tab and then enter the following information:
    1. Account description. Description of the LDAP account.
    2. Account username. The LDAP user name.
    3. Account password. Use only with encrypted profiles.
    4. LDAP Hostname.
    5. Use SSL. Designates whether the LDAP server uses SSL.
  5. Click the Search Settings tab. You can have several of these for one account. Should have at least one for the account to be useful. Each search string represents a node in the LDAP tree to start searching from, and tells what scope to search in (the node, the node plus one level of children, or the node plus all levels of children).
  6. Click New Search to create a new search string.
  7. In the Create a settings search dialog box, enter a decryption.
  8. In the Scope field, enter what recursion to use in the search.
  9. In the Search Base field, enter the path to the node at which to start a search. Can be one of the following 3 values: LDAPSearchSettingScopeBase: Just the immediate node pointed to by SearchBase. LDAPSearchSettingScopeOneLevel: The node plus its immediate children. LDAPSearchSettingScopeSubtree: The node plus all children, regardless of depth.
  10. Click Create.
  11. Click Create again to create the profile.