Bastionhost is connected to a Lightweight Directory Access Protocol (LDAP) server. Users on the LDAP server can be synchronized to Bastionhost as Bastionhost users. Before you can synchronize users on the LDAP server, you must configure LDAP authentication in the Bastionhost console. This topic describes how to configure LDAP authentication in the Bastionhost console.


An LDAP environment is deployed and Bastionhost can access the LDAP server.


  1. Log on to your bastion host. For more information, see Log on to the console of a bastion host.
  2. In the left-side navigation pane, click System Settings.
  3. On the System Settings page, click the LDAP Authentication tab.
  4. Configure parameters on this tab. The required parameters are Server Address, Port, Base DN, Account, and Password. Then, click Test Connection.
    If the test is successful, a message appears, which indicates that the operation is successful.
  5. Click Update.