Create teams with LDAP

This topic applies to Docker Enterprise.

The Docker Enterprise platform business, including products, customers, and employees, has been acquired by Mirantis, inc., effective 13-November-2019. For more information on the acquisition and how it may affect you and your business, refer to the Docker Enterprise Customer FAQ.

If Docker Enterprise is configured to sync users with a Lightweight Directory Access Protocol (LDAP) directory server, you can enable the syncing of new team members to occur either when creating a new team or when modifying settings of an existing team.

To enable LDAP in Docker Universal Control Place (UCP) and sync to your LDAP directory:

1. Click Admin Settings under your username drop-down list.
2. Click Authentication & Authorization.
3. Scroll down and click Yes next to LDAP Enabled. A list of LDAP settings displays.
4. Input values to match your LDAP server installation.
5. Test your configuration in UCP.
6. Manually create teams in UCP to mirror those in LDAP.
7. Click Sync Now.

For more information, see Integrate with an LDAP Directory.

Binding to the LDAP server

There are two methods for matching group members from an LDAP directory, direct bind and search bind.

Select Immediately Sync Team Members to run an LDAP sync operation immediately after saving the configuration for the team. It may take a moment before the members of the team are fully synced.

Match Group Members (Direct Bind)

The Direct Bind option specifies that team members be synced directly with member of a group in the organization’s LDAP directory. The team’s membership will be synced to match the membership of the group.

Match Search Results (Search Bind)

The Search Bind option specifies that team members be synced using a search query against the organization’s LDAP directory. The team’s membership will be synced to match the users in the search results.

Where to go next

• Integrate with an LDAP directory
• Create users and teams manually