LDAP Interfaces

Host interfaces that have been synchronized from your LDAP store to Pro Custodibus are displayed with their LDAP DN value in the Interface panel of the interface in the Pro Custodibus UI.

What is a WireGuard Interface?

A virtual network interface that connects a host to a WireGuard network. From the perspective of a host, an interface is the local side of its connection to a network.

See the Terminology page for a fuller explanation.

Connect an Interface

To connect an existing interface in Pro Custodibus to your LDAP store, do the following:

  1. Set the poll interval on your LDAP integration to 0. This will prevent the polling process from removing or duplicating the interface in Pro Custodibus until you are done making changes.

  2. Follow the steps from the Connect a Host documentation to connect the interface’s host (if you haven’t already).

  3. Create an entity for the interface in your LDAP store (for example, as a Device). Make sure it contains all the authoritative attribute values of the interface (since these values will overwrite the corresponding values in the Pro Custodibus database).

  4. Edit the interface in the Pro Custodibus UI. Select “LDAP” for the interface’s Managed field, and enter the interface’s DN in the LDAP DN field.

  5. Add the interface to a group in your LDAP store.

  6. Configure a Interface Network for the group in the Pro Custodibus UI (if you haven’t already).

  7. Set the poll interval on your LDAP integration back to its previous value.

Disconnect an Interface

To disconnect an existing interface in Pro Custodibus from your LDAP store (without disconnecting its host), do the following:

  1. Set the poll interval on your LDAP integration to 0. This will prevent the polling process from removing or duplicating the interface in Pro Custodibus until you are done making changes.

  2. Edit the interface in the Pro Custodibus UI. Select “Manual” for the interface’s Managed field.

  3. Remove the interface from all groups in your LDAP store that are synchronized to Pro Custodibus.

  4. Alternatively, remove the device network containing the interface in the Pro Custodibus UI. Note that this will remove all the remaining connected interfaces in the same network from Pro Custodibus on the next LDAP poll.

  5. Set the poll interval on your LDAP integration back to its previous value.

If the entity to which the interface is synchronized in your LDAP store is the same as the host, you can’t disconnect the interface without disconnecting the host. In that case, follow the steps from the Disconnect a Host documentation to disconnect the interface’s host.

Add an Interface

To add an interface from your LDAP store to Pro Custodibus, do the following:

  1. Follow the steps from the Add a Host documentation to add the interface’s host (if you haven’t already).

  2. Create an entity for the interface in your LDAP store (for example, as a Device).

  3. Add the interface to a group in your LDAP store.

  4. Configure a Interface Network for the group in the Pro Custodibus UI (if you haven’t already).

The interface will be added to Pro Custodibus on the next LDAP poll.

Edit an Interface

To edit an interface that’s displayed with an LDAP DN value in the Interface panel of the Pro Custodibus UI, don’t use the Pro Custodibus UI. Changes you make in the Pro Custodibus UI will be overwritten by the authoritative values from your LDAP store.

Instead, use your regular LDAP tools to make changes to the interface entity directly in your LDAP store. Your changes will be synchronized on the next LDAP poll.

Delete an Interface

To delete an interface that’s displayed with an LDAP DN value in the Interface panel of the Pro Custodibus UI, don’t use the Pro Custodibus UI. If you delete the interface in the Pro Custodibus UI, it will simply be re-created again a few minutes later.

Instead, use your regular LDAP tools to delete the interface entity directly in your LDAP store (or remove the interface entity from all groups synchronized to Pro Custodibus). The interface will be deleted in Pro Custodibus on the next LDAP poll.

Interface Networks

To add an interface network to your LDAP integration, do the following in the Pro Custodibus UI:

  1. Click the Admin link in the app header.

  2. Click the LDAP link in the Administration panel.

  3. Click the “plus” icon on the Device Networks panel.

  4. Fill out the following fields (at minimum):

  5. Click the Add button.

The interfaces in the network will be added to Pro Custodibus on the next LDAP poll.

See the Networks documentation for more details.