LDAP Hosts
Hosts that have been synchronized from your LDAP store to Pro Custodibus are displayed with their LDAP DN value in the Host panel of the host in the Pro Custodibus UI.
Connect a Host
To connect an existing host in Pro Custodibus to your LDAP store, do the following:
-
Set the poll interval on your LDAP integration to
0
. This will prevent the polling process from removing or duplicating the host in Pro Custodibus until you are done making changes. -
Create an entity for the host in your LDAP store (for example, as a Device or a Computer). Make sure it contains all the authoritative attribute values of the host (since these values will overwrite the corresponding values in the Pro Custodibus database).
-
Edit the host in the Pro Custodibus UI. Select “LDAP” for the host’s Managed field, and enter the host’s DN in the LDAP DN field.
-
Add the host to a group in your LDAP store.
-
Configure a Host Network for the group in the Pro Custodibus UI (if you haven’t already).
-
If the host has multiple WireGuard interfaces (or if you want to use a separate LDAP entity to manage the host’s single interface), follow the steps from the Connect an Interface documentation for each interface.
-
Set the poll interval on your LDAP integration back to its previous value.
Disconnect a Host
To disconnect an existing host in Pro Custodibus from your LDAP store, do the following:
-
Set the poll interval on your LDAP integration to
0
. This will prevent the polling process from removing or duplicating the host in Pro Custodibus until you are done making changes. -
Edit the host in the Pro Custodibus UI. Select “Manual” for the host’s Managed field.
-
Remove the host and all its interfaces from all groups in your LDAP store that are synchronized to Pro Custodibus.
-
Alternatively, remove all device networks containing the host (or any of its interfaces) in the Pro Custodibus UI. Note that this will remove all the remaining connected hosts in the same network from Pro Custodibus on the next LDAP poll.
-
Set the poll interval on your LDAP integration back to its previous value.
Add a Host
To add a host from your LDAP store to Pro Custodibus, do the following:
-
Create an entity for the host in your LDAP store (for example, as a Device or a Computer).
-
Add the host to a group in your LDAP store.
-
Configure a Host Network for the group in the Pro Custodibus UI (if you haven’t already).
The host will be added to Pro Custodibus on the next LDAP poll.
Edit a Host
To edit a host that’s displayed with an LDAP DN value in the Host panel of the Pro Custodibus UI, don’t use the Pro Custodibus UI. Changes you make in the Pro Custodibus UI will be overwritten by the authoritative values from your LDAP store.
Instead, use your regular LDAP tools to make changes to the host entity directly in your LDAP store. Your changes will be synchronized on the next LDAP poll.
Delete a Host
To delete a host that’s displayed with an LDAP DN value in the Host panel of the Pro Custodibus UI, don’t use the Pro Custodibus UI. If you delete the host in the Pro Custodibus UI, it will simply be re-created again a few minutes later.
Instead, use your regular LDAP tools to delete the host entity directly in your LDAP store (or remove the host entity from all groups synchronized to Pro Custodibus). The host will be deleted in Pro Custodibus on the next LDAP poll.
Host Networks
To add a host network to your LDAP integration, do the following in the Pro Custodibus UI:
-
Click the Admin link in the app header.
-
Click the LDAP link in the Administration panel.
-
Click the “plus” icon on the Device Networks panel.
-
Fill out the following fields (at minimum):
-
To include a WireGuard interface for each host, also fill out the following fields (at minimum):
-
Click the Add button.
The hosts in the network will be added to Pro Custodibus on the next LDAP poll.
See the Networks documentation for more details.