Powered by Zoomin Software. For more details please contactZoomin

Flowmon ADS User Guide

Table of Contents

Querying LDAP Settings

Save PDF
Save selected topicSave selected topic and subtopicsSave all topics
Share
Share to emailCopy topic URL
Print
  • Last Updated: May 1, 2026
  • 2 minute read
    • Flowmon Products
    • Flowmon Anomaly Detection System
    • Documentation

This part of the configuration can be found in Settings → System Settings LDAP Settings.

Flowmon ADS can be connected to LDAP. This connection can be used to get additional information about the IP addresses from a monitored network. This information can be obtained using the IP tools from the context menu. The information is searched by querying the LDAP server for all objects containing a matching IP address in the field specified by the IP field name option. The search starts at Search base and it passes all subtrees. All matching objects are returned.

The Certificate parameter is used when the SSL option is enabled. It is a .pem certificate of the certificate authority that signs the server certificate. The SSL parameter enables/disables encryption of the LDAP server traffic. The Certificate parameter is required if SSL is enabled.

You must properly configure:

  • Server address: the IP address of the LDAP server.
  • Username and Password: credentials for authentication to the LDAP server.
  • Search base: the starting point of the search.
  • IP field name: the name of the attribute with an IP address.
  • Timeout: number of seconds (how long is spent on the search) (0 means there is no limit).

If SSL is enabled you must upload a valid .pem certificate file (from the certificate authority that signs the server certificate) in the Certificate parameter.

You can use the Test connection button to test the configuration. The IP address parameter in the pop-up window shown after clicking Test connection is the IP address for which the information is queried from the LDAP server (not the IP address of the LDAP server). Before testing the connection, make sure you press the Save button, otherwise, the test will not be performed.

The No data found in LDAP available message can be caused by:

  • incorrect Search base
  • incorrect Name of IP field
  • non-existing record for the given IP address

The No data found in LDAP available message cannot be caused by the following issues:

  • If the Server address is incorrect, a message saying LDAP connection: Cannot connect to LDAP server is displayed.
  • If the Username or Password is incorrect, a message saying LDAP bind: invalid credentials is displayed.

LDAP search for IP can be simulated/tested by 3rd party tools. We recommend ldapsearch:

#PROTO is "ldap" or "ldaps" for "Use SSL"
ldapsearch -b "$SEARCH_BASE" -H $PROTO://$SERVER -D "$USER" $IPFIELD=$TEST_IP -W
TitleResults for “How to create a CRG?”Also Available inAlert