If you are using LLDAP / Light LDAP, use this in your configuration YML.
ldap:
implementation: custom
# Use actual LLDAP address
url: ldap://10.0.0.249:3890
timeout: 5s
start_tls: false
# Use actual base DN
base_dn: dc=domain,dc=com
username_attribute: uid
additional_users_dn: ou=people
# To restrict sign-in to username ONLY, use this filter:
# (&({username_attribute}={input})(objectClass=person))
# To allow sign-in with either username OR email, use this filter:
# (&(|({username_attribute}={input})({mail_attribute}={input}))(objectClass=person))
users_filter: (&(|({username_attribute}={input})({mail_attribute}={input}))(objectClass=person))
additional_groups_dn: ou=groups
groups_filter: (member={dn})
group_name_attribute: cn
mail_attribute: mail
display_name_attribute: displayName
# Use actual admin DN and password
user: cn=admin,ou=people,dc=domain,dc=com
password: "LDAPAdminUserPassword"
