Versions Compared


  • This line was added.
  • This line was removed.
  • Formatting was changed.


  • A copy of your LDAP server's certificate (base 64 encoded X.509, often called pem format)
  • A member of your IT team to enter the connection details
  • An LDAP server that can be connected to from outside of your network

Add the connection

In the administration interface go to Management > Connections




The name of the connection as it will appear to users

Directory type

Used to set default values for the server port and filter

Server host

The address where OpenAthens can connect to your server. This address will need to be accessible from outside of your network

Server port

The port that your server uses for LDAP traffic, usually 389. You can specify a non-standard port if nessisary.

Connection type

The form of security used.  StartTLS is standard but ldaps:// can be chosen for older systems.

Admin bind DN

The distinguished name of a user that can connect and view all the users you need to authenticate

Bind password

The password for the user specified in the admin bind

Base DN

Where in your directory OpenAthens will connect. All valid users will need to be under it.


Status The distinguished name of your directory.


Allows you to specify the username field and optionally include other requirements.

Live & visible = production ready. Users will be able to access this login at the authentication point

Live and not visible = testing. Will work with the right type of URL, but will not appear at the authentication point.

Not live = cannot be used. The visibility setting is ignored.

Changes to the status can take up to PLACEHOLDER to go live.

Example filters