Support Center

Configuring FreeNAS to use JumpCloud's LDAP-as-a-Service

Prerequisites:
 

 

FreeNAS Notes:
 

  • This process was customer qualified on Jun 27, 2018 with FreeNAS-11.1. (FreeNAS Download site)
  • The Bind Password in the LDAP configuration page isn’t visible (obfuscated or otherwise) after reloading the page once it is configured.
  • Users from the LDAP connection do not seem to show up in the FreeNAS GUI. For example, you will not be able to see them under View Users. In addition, SSH access is limited to local users only by default.
  • Once configured, you may have to click Rebuild Directory Service Cache for users to be imported from LDAP, or for any updates to the JumpCloud Samba User Group to propagate to FreeNAS.
 

Certificate Import:

  1. Go to https://certs.godaddy.com/repository/
  2. Download the GoDaddy Class 2 Certification Authority Root Certificate - G2  (gdroot-g2.crt)
  3. Open the .crt file with a text editor, and copy all contents
  4. From the FreeNAS Administrator Dashboard navigate to System > CAs > and click Import CA 
  5. Paste the certificate contents into the Certificate input field, and enter a meaningful name for the cert in the Identifier field (e.g. GoDaddy_Root_G2)
  6. You can leave the Private Key and Passphrase / Confirm Passphrase fields blank.  If you have the serial number of the certificate, enter it in the Serial field and otherwise enter 1
  7. Click OK
 

LDAP Configuration:

This may be accessed under Directory Service > LDAP in the FreeNAS Administrator Dashboard.  As noted in the prerequisites, please refer to Using JumpCloud's LDAP-as-a-Service to obtain the JumpCloud specific settings required below.
  • Hostname: ldap.jumpcloud.com
  • Base DN: o=YOUR_ORG_ID,dc=jumpcloud,dc=com
  • Bind DN: uid=LDAP_BINDING_USER,ou=Users,o=YOUR_ORG_ID,dc=jumpcloud,dc=com
  • Bind Password: LDAP_BINDING_USER_PASSWORD
  • Enable: Checked
 

LDAP Advanced Configuration:

This may be access under Directory Service > LDAP in the FreeNAS Administrator Dashboard after clicking the Advanced Mode button.

  • Encryption Mode: TLS
  • Certificate: Choose the Certificate name corresponding to the CA configured from Step 5 of the Certificate Import
  • Samba Schema: Checked


Click the Save button to complete the LDAP and LDAP Advanced Configurations.

 

Last Updated: Jun 27, 2018 03:11PM MDT

Related Articles
desk-forwarding@jumpcloud.com
http://assets1.desk.com/
false
desk
Loading
seconds ago
a minute ago
minutes ago
an hour ago
hours ago
a day ago
days ago
about
false
Invalid characters found
/customer/en/portal/articles/autocomplete