LDAP Directory Service Integration

LDAP Directory Service Integration provides standardized connectivity with enterprise-grade identity sources, enabling centralized management and automatic synchronization of user identity information to build a unified, efficient, and secure identity governance system.

Version Limitation: This feature is only supported in privately deployed versions and is unavailable for cloud service editions.

Core Value

1. Unified Identity Management

Centralized Control:
Automated Synchronization:
- Scheduled incremental sync (default: 30 minutes)
- Real-time triggered sync (upon account changes)
- Bidirectional attribute mapping configuration
Lifecycle Linkage: Automatic suspension of all associated system permissions when an employee's AD account is disabled upon departure.

2. Enhanced Security Authentication

Enterprise-Grade Authentication:
Authentication Method Protocol Support Security Level
Simple Bind LDAP ★★☆
SASL Authentication DIGEST-MD5 ★★★
Encrypted Channel STARTTLS/SSL ★★★★
Password Policy Inheritance:
- Complexity requirements synchronization
- Mandatory password expiration synchronization

Authentication Method	Protocol Support	Security Level
Simple Bind	LDAP	★★☆
SASL Authentication	DIGEST-MD5	★★★
Encrypted Channel	STARTTLS/SSL	★★★★

3. Efficient Operations System

User Provisioning Comparison:
Method New Employee Activation Time Error Rate
Manual Creation 1-2 business days >8%
LDAP Sync <5 minutes <0.5%
Bulk Operations:
- One-click department structure import
- OU-based (Organizational Unit) permission assignment
- Group policy inheritance for permission templates

Method	New Employee Activation Time	Error Rate
Manual Creation	1-2 business days	>8%
LDAP Sync	<5 minutes	<0.5%

Application Scenarios

1. Rapid Onboarding for New Employees

Process:
HR creates an account in AD
Automatic sync to AngusGM
Pre-configured permission templates take effect
Efficiency: System readiness achieved in <10 minutes

2. Organizational Restructuring

Scenario: Department reorganization
Steps:
Adjust department structure in AD
Trigger real-time synchronization
Permissions automatically inherit the new structure
Advantage: Organization-wide adjustments completed within 1 hour for a thousand employees

3. Unified Security Policy

Requirement: Strengthen password security
Implementation:
Enable 12-character complexity policy in AD
AngusGM automatically inherits the policy
System-wide forced password reset
Outcome: Unified security level, reduced breach risk

User

Department

Group

Tag

Permission Policy

View Permissions

Notice

Message

Cloud Store

My Goods

My License

Real-name Authentication

Security Settings

Mail Server

Sending Records

SMS Channel

SMS Template

Sending Records

Receiving Channels

Event Template

Event Records

Operation Logs

System Logs

Request Logs

LDAP

Resource Quota

Application Storage

Online Users

Appearance

System Tokens

LDAP Directory Service Integration ​

Core Value ​

1. Unified Identity Management ​

2. Enhanced Security Authentication ​

3. Efficient Operations System ​

Application Scenarios ​

1. Rapid Onboarding for New Employees ​

2. Organizational Restructuring ​

3. Unified Security Policy ​

LDAP Directory Service Integration

Core Value

1. Unified Identity Management

2. Enhanced Security Authentication

3. Efficient Operations System

Application Scenarios

1. Rapid Onboarding for New Employees

2. Organizational Restructuring

3. Unified Security Policy