LDAP-as-a-Service

If you are an IT admin, you already know that setting up and managing LDAP can be painful. Most of the time you’re in charge of managing the system at the command line to set up the right capabilities that you need. LDAP GUIs only solve part of your problems. Tasks such as understanding LDAP search concepts and setting up the underlying tree-schema correctly, and having it appropriately networked so all of your resources can see it while also keeping it secure, are all still painful for IT admins. They also all require significant skills in networking, Unix server administration, and on-going care and maintenance of a critical piece of infrastructure.

Cloud-based LDAP. Always On. Always Secure.

There are zero servers required to leverage JumpCloud. Our LDAP-as-a-Service means you benefit from all of the reasons you want to use LDAP, without the need to manage any of the servers or the uptime and availability requirements your team may be used to when hosting your own LDAP. JumpCloud’s platform security and support for LDAPS and Start TLS  ensure your data is protected at rest, and in transit.

Simple to Use, Web-based Console

JumpCloud’s web-based interface simplifies the use and understanding of your user accounts, their group assignments and the various resources they are connected to through LDAP or any of JumpCloud’s supported protocols. Access JumpCloud’s management interface from any browser through a secure, https connection with no need for client-side tools to be installed. JumpCloud’s User Portal ensures your employees can take care of chores such as password updates and profile changes, reducing help desk tickets.

Group Membership Support

JumpCloud Groups are reflected through our LDAP service as the groupOfNames objectclass. This ensures that your connected resources can rely on centralized group membership required for role based access in most common applications and resources.

Secure LDAP Binding

Utilize JumpCloud support for LDAPS (636) or 368 (with StartTLS) to ensure a deeply secure connection from your on-premise or cloud-based resource, using JumpCloud’s LDAP endpoint for authentication and group membership. Further, JumpCloud’s LDAP BindDN service accounts are governed with an array of password management features to ensure your bound resources maintain a secure, persisted, connection.

LDAP Authentication to Samba File Servers

JumpCloud’s LDAP service includes secure support for authentication on Samba file servers or commercial NAS appliances. Jumpcloud ensures the traditional SMB/CIFS attribute requirements for Windows authentication to Linux-based Samba servers is deeply protected and governed by Samba-specific bind accounts that leverage secure ACLs along with role-based access provided by JumpCloud’s Groups. Further, JumpCloud ensures these Samba resources are only authenticated through the most secure means possible, LDAPS or Start TLS.

Features

  • Highly available, global LDAP servers.
  • RFC 2307-compliant schema.
  • Standard LDAP configurations to enable connections with virtually all LDAP clients.
  • LDAP and LDAPS available (ports 389 in clear text or STARTTLS, and 636 with SSL).
  • Support for inetOrgPerson, groupOfNames, posixGroup objects.
  • Users can be bind-only, or can both bind and search with a single mouse-click.
  • Support for memberOf overlay (identify group membership from the user).
  • Support for group member search (identify group membership from the group).
  • Easy to use SaaS interface.
  • End User/Employee Self Service.
  • Control your whole directory via a simple REST API.

Benefits

  • LDAP delivered as a service — no need to install, configure, and manage your own LDAP server.
  • Standards-based schema and directory structure — continuously improved and compatibility-tested with a variety of different applications.
  • Low latency — GEO IP-based server lookups coupled with servers across the globe keep latency low.
  • Automatic High Availability — JumpCloud’s automated load balancing, elastic scaling, and redundancy means your end users will never be denied access to the applications, systems, and IT resources they depend on.
  • Avoid Management Overhead — zero installation or server configuration and no ongoing management hassles.

Screenshots:

To learn more, check out our support documentation on using JumpCloud’s LDAP-as-a-Service.

“LDAP is now well over 20 years old. It’s a core standard in the identity management space. As more organizations move to the cloud, IT is going to be under increasing pressure to connect their users to all of the IT resources they need. I believe that the next generation of LDAP and AD is going to be Directory-as-a-Service®.”

Tim Howes
CTO ClearStory Data
Co-Inventor of LDAP

10 users free forever.