Authentication Methods

Authentication Methods#

The Mesh and Directory Role, which installs an OpenLDAP service, is employed by Carbonio CE for user authentication and account management.

Carbonio CE has the ability to use multiple authentication mechanisms. The authentication type can be set independently for each domain defined in the Carbonio CE infrastructure. Each of them can be managed from CLI or Carbonio Admin Panel: please follow the cross references given to configure each of the methods.

  1. Carbonio. This is the default authentication method, which is equivalent to the Local LDAP.

  2. Local LDAP. The internal authentication method assumes that the LDAP scheme is running on the Carbonio CE server where the Directory Server Role is installed.

  3. External LDAP. The external LDAP authentication method allows to connect to an LDAP server, possibly external to the Carbonio CE infrastructure, using a username and password existing in the external database. See how to configure it by CLI or by GUI.

  4. External Active Directory. The external Active Directory authentication method involves the use of Microsoft Active Directory services for authentication and Carbonio CE’s Directory Server services for all other transactions. See how to configure it by CLI or by GUI.

Both the External LDAP and External Active Directory have as their main requirement that users exist on both servers. Please refer to Sections External LDAP and External Active Directory respectively for configuration details.