User Management: Database & LDAP Integration Guide
Mideye offers flexible user management that integrates with various repositories. End users can be managed using different configurations depending on your environment.
User repository options
Section titled “User repository options”| Repository | Description |
|---|---|
| Mideye Database | Standalone user accounts stored directly in Mideye Server |
| Active Directory | Users managed via AD attributes and LDAP profiles |
| OpenLDAP | Users managed via OpenLDAP repositories |
| Entra ID | Integration with Microsoft Entra ID (formerly Azure AD) |
| Hybrid Model | Combines AD/LDAP with Mideye Database for overriding attributes (e.g., phone numbers) |
User types
Section titled “User types”Database users
Section titled “Database users”Users created and managed directly in the Mideye database through the Web Admin interface.
Hybrid users
Section titled “Hybrid users”Accounts that use data from an external LDAP repository but allow attribute overrides stored in the Mideye database. This is useful when LDAP attributes like phone numbers need to differ from the directory.
LDAP users
Section titled “LDAP users”Users managed entirely in the external directory. Mideye reads attributes during each authentication.
LDAP configuration highlights
Section titled “LDAP configuration highlights”- LDAP Profiles — Define connection settings for your LDAP server with unique profiles
- LDAP Attributes — Specify user identity, mobile phone number, and other attributes for authentication
- Group Checks — Control access using LDAP group membership
- Auto-Correction — Automatically format mobile numbers for correct authentication
- LDAPS Certificates — Import CA certificates for secure LDAP connections
Common tasks
Section titled “Common tasks”| Task | How to |
|---|---|
| Create a database user | Web Admin → Users and Tokens → Mideye Users → Add new database user |
| Search for a user | Web Admin → Users and Tokens → search by username or token number |
| Connect to LDAP | Web Admin → Directory Settings → LDAP Profiles → create/edit profile |
| Map LDAP groups to roles | RADIUS Settings → RADIUS Translation → map group DNs to roles |
| Change user password (PAP) | Requires an LDAPS profile. See LDAP Profiles |
Related links
Section titled “Related links”- LDAP Profiles — Configure LDAP directory connections
- Entra ID Profiles — Connect to Microsoft Entra ID
- RADIUS Translation — Map LDAP attributes to RADIUS responses
- Admin Web Interface — User roles and permissions
- Mideye Users — GUI reference for user management