Even if LDAP doesn’t form the core of your directory anymore, you likely still have LDAP resources to which users authenticate.
This could include VPNs, which are particularly prevalent now as more users work remotely and need secure channels to access their resources. It could also include legacy applications and on-premises infrastructure like file servers.
Here, we’ll explore how to integrate your LDAP resources directly with your core directory platform and then monitor user events across those resources.
Directory Insights: Visibility Across Environment
JumpCloud® is a comprehensive cloud directory platform you can use to manage user identities, access, and devices, including macOS®, Windows®, and Linux® devices. With JumpCloud, you federate user identities from the core directory to resources via industry-standard protocols including cloud LDAP, OAuth, cloud RADIUS, SAML (and JIT), and SCIM. Once resources are connected to the core directory, you can then use Directory Insights™, for complete visibility into events across your infrastructure.
Directory Insights delivers auditing capabilities across your endpoints, and you can view and filter the data directly in your web-based Admin Portal. This includes LDAP events, such as user authentications to LDAP-backed resources like VPNs, Samba file servers and NAS appliances, and legacy applications.
Integrated LDAP Reporting Tool
In the web-based Admin Portal, you can view the Directory Insights data and filter it — including by service type. When you filter by LDAP, you can then view LDAP event frequency in a chart, as well as each unique LDAP event accompanied by its associated user, timestamp, result, and IP.
Combined with data points about user access to other resources and changes to user access rights, you get a complete picture of activity across your IT environment. You can also automate the process to export and store the data in an AWS S3 bucket.
Automate Directory Reporting
Deploy the JumpCloud Directory Insights Serverless application in AWS to collect your data. An S3 bucket allows you to store it for longer than the data is available natively in your JumpCloud Admin Portal — 90 days — which helps you build longer term reports for compliance audits. From there, you can also move the data into a SIEM of your choice for further analysis of the data.
If you’d like to give Directory Insights a try, sign up for a JumpCloud Free account for unrestricted access to the platform for up to 10 users, 10 devices, and premium features.