Skip to product menu
Zoho creator
close
EXPLORE ALL PRODUCTS

Sales

CRM

Comprehensive CRM platform for customer-facing teams.

CRM
Voice

Cloud Contact Center Software for businesses.

Voice
Sign

Digital signature app for businesses.

Sign
Forms

Build online forms for every business need.

Forms
Bigin

Simple CRM for small businesses moving from spreadsheets.

Bigin
SalesIQ

Live chat app to engage and convert website visitors.

SalesIQ
Bookings

Appointment scheduling app for consultations with customers.

Bookings
RouteIQ

Comprehensive sales map visualization and optimal route planning solution.

RouteIQ
Thrive

Loyalty platform to reward, retain, and grow your customer base.

Thrive
Suites
CRM Plus

Unified platform to deliver top-notch customer experience.

CRM Plus

Related software from other brands at Zoho Corporation

NEW
Zakya

Modern retail POS to sell better, manage your entire business, and join the digital revolution.

Zakya

Marketing

Campaigns

Create, send, and track targeted email campaigns that drive sales.

Campaigns
Voice

Cloud Contact Center Software for businesses.

Voice
Sign

Digital signature app for businesses.

Sign
Forms

Build online forms for every business need.

Forms
Social

All-in-one social media management software.

Social
Survey

Design surveys to reach and interact with your audience.

Survey
SalesIQ

Live chat app to engage and convert website visitors.

SalesIQ
Sites

Online website builder with extensive customisation options.

Sites
Backstage

End-to-end event management software.

Backstage
PageSense

Website conversion optimization and personalisation platform.

PageSense
Marketing Automation

All-in-one marketing automation software.

Marketing Automation
LandingPage

Smart landing page builder to increase conversion rates

LandingPage
Webinar

Webinar platform for webcasting online webinars.

Webinar
NEW
LeadChain

Sync, manage, and convert leads across channels seamlessly.

LeadChain
NEW
Domains

Easy domain registration, transfer, and secured DNS management.

Domains
NEW
CommunitySpaces

Online community platform for individuals and businesses to grow their network and brand.

CommunitySpaces
Thrive

Loyalty platform to reward, retain, and grow your customer base.

Thrive
Publish

Manage all your local business listings on a single platform.

Publish
Suites
Marketing Plus

Unified marketing platform for marketing teams.

Marketing Plus

Commerce and POS

Commerce

eCommerce platform to manage and market your online store.

Commerce

Related software from other brands at Zoho Corporation

NEW
Zakya

Modern retail POS to sell better, manage your entire business, and join the digital revolution.

Zakya

Service

Desk

Helpdesk software to deliver great customer support.

Desk
Assist

Remote support and unattended remote access software.

Assist
Voice

Cloud Contact Center Software for businesses.

Voice
SalesIQ

Live chat app to engage and convert website visitors.

SalesIQ
Bookings

Appointment scheduling app for consultations with customers.

Bookings
FSM

End-to-end field service management platform for service businesses.

FSM
Lens

Interactive remote assistance software with augmented reality.

Lens
Solo

The all-in-one toolkit for solopreneurs.

Solo
Suites
Service Plus

Unified platform for customer service and support teams.

Service Plus

Finance

Books

Powerful accounting platform for growing businesses.

Books
Expense

Effortless expense reporting platform.

Expense
Sign

Digital signature app for businesses.

Sign
Inventory

Powerful stock management and inventory control software.

Inventory
FREE
Invoice

100% Free invoicing solution.

Invoice
Billing

End-to-end billing solution for your business.

Billing
NEW
Payroll

Payroll software with automated tax payments and filing.

Payroll
Commerce

eCommerce platform to manage and market your online store.

Commerce
Checkout

Collect payments online with custom branded pages.

Checkout
Practice

Practice management software for accounting firms.

Practice
Solo

The all-in-one toolkit for solopreneurs.

Solo
NEW
Payments

Unified payment solution built for all businesses.

Payments
Suites
Finance Plus

All-in-one suite to manage your operations and finances.

Finance Plus

Email, Storage, and Collaboration

Mail

Secure email service for teams of all sizes.

Mail
Voice

Cloud Contact Center Software for businesses.

Voice
Sign

Digital signature app for businesses.

Sign
WorkDrive

Online file management for teams.

WorkDrive
Bookings

Appointment scheduling app for consultations with customers.

Bookings
Cliq

Stay in touch with teams no matter where you are.

Cliq
Notebook

Beautiful home for all your notes.

Notebook
Meeting

Online meeting software for all your video conferencing & webinar needs.

Meeting
Connect

Employee experience platform to communicate, engage, and build positive employee relations.

Connect
Learn

Knowledge and learning management platform.

Learn
Office Integrator

Built in document editors for web apps.

Office Integrator
Writer

Word processor for focused writing and discussions.

Writer
TeamInbox

Shared inboxes for teams.

TeamInbox
ZeptoMail

Secure and reliable transactional email sending service.

ZeptoMail
Show

Create, edit, and share slides with a sleek presentation app.

Show
Tables

Work management tool to connect people, processes, and information.

Tables
Sheet

Spreadsheet software for collaborative teams.

Sheet
Office Suite

Powerful collaborative work platform for teams.

Office Suite
Calendar

Online business calendar to manage events and schedule appointments.

Calendar
ToDo

Collaborative task management for individuals and teams.

ToDo
FREE
PDF Editor

Collaborative online PDF editing tool.

PDF Editor
Suites
Workplace

Application suite built to improve team productivity and collaboration.

Workplace

Related software from other brands at Zoho Corporation

Vani

A visual collaboration platform for teams.

Vani

Human Resources

Expense

Effortless expense reporting platform.

Expense
Recruit

Intuitive recruiting platform built to provide hiring solutions.

Recruit
People

Organize, automate, and simplify your HR processes.

People
Sign

Digital signature app for businesses.

Sign
NEW
Payroll

Payroll software with automated tax payments and filing.

Payroll
Shifts

Employee scheduling and time tracking app.

Shifts
Workerly

Manage temporary staffing with an employee scheduling solution.

Workerly
Suites
People Plus

Comprehensive HR platform for seamless employee experiences.

People Plus

Related software from other brands at Zoho Corporation

TrainerCentral

Create engaging online training programs to upskill your workforce.

TrainerCentral

Legal

Sign

Digital signature app for businesses.

Sign
Contracts

Comprehensive contract lifecycle management software.

Contracts
NEW
Start

Business formation service to launch and grow your businesses.

Start

Security and IT Management

Creator

AI-powered platform to build custom business apps.

Creator
Assist

Remote support and unattended remote access software.

Assist
Vault

Online password manager for teams.

Vault
Directory

Workforce identity and access management solution for cloud businesses.

Directory
Lens

Interactive remote assistance software with augmented reality.

Lens
QEngine

Test automation software to build, manage, execute, and report testcases.

QEngine
Catalyst

Pro-code platform to build and deploy your apps.

Catalyst
RPA

Automate manual, tedious, and repetitive tasks easily.

RPA
NEW
eProtect

Comprehensive email security and archiving for every business.

eProtect
FREE
OneAuth

Secure multi-factor authenticator (MFA) for all your online accounts.

OneAuth
Toolkit

Complete resource for any admin-related lookup queries.

Toolkit

Related software from other brands at Zoho Corporation

Ulaa

Secure your business with built-in browser protection and control.

Ulaa

Enterprise solutions from ManageEngine and a security-first browser, Ulaa

ServiceDesk Plus

Cloud-based IT ticketing system to resolve issues faster.

ServiceDesk Plus
Endpoint Central

A 360-degree UEM solution for endpoint management and security.

Endpoint Central
Site24x7

All-in-one monitoring solution for DevOps and IT Operations.

Site24x7
Mobile Device Manager Plus

Set up and secure your enterprise mobile devices and apps.

Mobile Device Manager Plus
Patch Manager Plus

Automated multi-OS patch management.

Patch Manager Plus
Log360 Cloud

Detect, investigate, and neutralize security threats with a cloud SIEM solution.

Log360 Cloud
Analytics Plus

AI-powered unified analytics platform to correlate all IT data.

Analytics Plus
Remote Access Plus

Secure and comprehensive unattended access at the click of your mouse.

Remote Access Plus
StatusIQ

Status page for real-time status and incident communication.

StatusIQ
AlarmsOne

Centralized IT alert management.

AlarmsOne
CloudSpend

Cloud cost management for modern software teams.

CloudSpend
CloudDNS

Optimize your domains for speed, security, and controlled name resolution.

CloudDNS
Digital Risk Analyzer

All-in-one digital risk assessment tool to ensure domain security.

Digital Risk Analyzer
Identity360

Cloud-native identity platform redefining workforce IAM.

Identity360
Saas Manager Plus

SaaS management platform to maximize ROI.

Saas Manager Plus

ManageEngine is a division of Zoho Corporation.

BI and Analytics

Analytics

Modern self-service BI and analytics platform.

Analytics
DataPrep

AI-powered ETL tool for effective data integration and movement.

DataPrep
IoT

Harnessing IoT analytics for real-time operational intelligence.

IoT
Embedded BI

Embedded analytics and white label BI solutions, tailored for your needs.

Embedded BI

Project Management

Projects

Manage, track, and collaborate on projects with teams.

Projects
Sprints

Planning and tracking tool for scrum teams.

Sprints
BugTracker

Automatic bug tracking software for managing bugs.

BugTracker
Solo

The all-in-one toolkit for solopreneurs.

Solo
Suites
Projects Plus

Unified project management platform for intelligent, data-driven work.

Projects Plus

Developer Platforms

Creator

AI-powered platform to build custom business apps.

Creator
Flow

Automate business workflows by creating smart integrations.

Flow
Office Integrator

Built in document editors for web apps.

Office Integrator
DataPrep

AI-powered ETL tool for effective data integration and movement.

DataPrep
ZeptoMail

Secure and reliable transactional email sending service.

ZeptoMail
Tables

Work management tool to connect people, processes, and information.

Tables
QEngine

Test automation software to build, manage, execute, and report testcases.

QEngine
Catalyst

Pro-code platform to build and deploy your apps.

Catalyst
RPA

Automate manual, tedious, and repetitive tasks easily.

RPA
IoT

Build, deploy, and scale IoT solutions for connected businesses.

IoT
Apptics

Application analytics for all apps.

Apptics
Embedded BI

Embedded analytics and white label BI solutions, tailored for your needs.

Embedded BI

Related software from other brands at Zoho Corporation

Qntrl

Maximize process efficiency with advanced workflow automation.

Qntrl

IoT

IoT

Low-code IoT platform and solutions for connected businesses.

IoT
CRM Plus

Unified platform to deliver top-notch customer experience.

Try now
CRM Plus
Service Plus

Unified platform for customer service and support teams.

Try now
Service Plus
Finance Plus

All-in-one suite to manage your operations and finances.

Try now
Finance Plus
People Plus

Comprehensive HR platform for seamless employee experiences.

Try now
People Plus
Workplace

Application suite built to improve team productivity and collaboration.

Try now
Workplace
Marketing Plus

Unified marketing platform for marketing teams.

Try now
Marketing Plus
Projects Plus

Unified project management platform for intelligent, data-driven work.

Try now
Projects Plus
All-in-one suite

Zoho One

The Operating System for Business

Run your entire business on Zoho with our unified cloud software, designed to help you break down silos between departments and increase organizational efficiency.

TRY ZOHO ONE
Zoho Marketplace

With over 2000 ready-to-use extensions across 40+ categories, connect your favorite business tools with the Zoho products you already use.

EXPLORE MARKETPLACE
Skip to main content
Zoho creator

Print and PDF

Understand user sync through LDAP

Table of Contents

1. Overview
2. Use case
3. LDAP configuration
    3.1. Domain controller
    3.2. Groups
4. Points to note
5. Related topics

1. Overview

Lightweight Directory Access Protocol (LDAP) is an open-standard protocol that streamlines user management and helps manage directory services over a network. Setting up LDAP allows you to integrate your existing directory with Zoho Creator On-Premise thereby enabling a centralized management of users. User accounts that are stored in your existing directory can be synced to Creator On-Premise regularly, reducing the need to manage users separately in place.

To set up LDAP, you need to configure domain controllers that act as the servers that manage and authenticate user accounts within your directory. Enabling user sync while adding these domain controllers allows user accounts from your directory to synchronize automatically with Creator On-Premise. Further, you can create user groups based on those domain controllers to help define access permissions and roles for the included users. To achieve this:

  1. Add domain controllers - You can add domain controllers based on your directories' attributes, such as the service endpoint, server type, and so on.
  2. Create custom groups - You can configure customized groups based on the directory attributes of the added domain controllers.

2. Use case

Say an organization is using Active Directory (AD) and wants to streamline user management in Creator On-Premise and its applications. By syncing AD with Creator On-Premise via LDAP, user accounts and groups are automatically updated in real time at regular intervals. This integration simplifies onboarding, ensures accurate role-based access, and reduces administrative effort by syncing user data from the directory to Creator On-Premise.

3. LDAP configuration

To establish a one-way bridge from your directory to Creator On-Premise that facilitate regular user syncs, you need to add domain controllers. The log details of the sync schedules that take place from your directory to Creator On-Premise can be accessed in the logs folder of Creator On-Premise. After adding domain controllers, you can create groups which accommodate specific users based on your preferences and enable user management.

3.1. Domain controller

In the Zoho Creator On-Premise LDAP configuration, adding a domain controller involves specifying the necessary parameters to ensure seamless synchronization between your directory and Creator On-Premise.

SectionAttributesExplanation
Domain DetailsDomain Name

A unique name to identify a specific domain controller while configuring custom groups.

Note: Domain Name can contain only:

  • 1 to 30 characters
  • The special characters _ * @ \ / ! : | ~ and &
 Domain ControllerService Endpoint of the domain controller, typically an IP or host name), which Creator On-Premise will connect to for authentication and data synchronization.
 LDAP Server TypeThe type of LDAP server that Creator On-Premise needs to connect to. This helps Creator On-Premise configure the association based on the specific characteristics of the LDAP server in use.
 Mail Attribute Label

The label or attribute that is used to store a user's email address in the LDAP directory. This helps Creator On-Premise to know where to look in the LDAP server for a user's email address, which is used for identification. For example, "mail" is the commonly used label in Microsoft Active Directory and OpenLDAP.

Note: This field will be auto-populated and disabled for Microsoft Active Directory, OpenLDAP, and Novell Directory. For other directories, it will be enabled, and the relevant label must be provided manually.

 Distinguished Name Attribute Label

A unique value for each entry in an LDAP directory. It represents the unique identifier or hierarchy of where an entry is located in the LDAP directory structure. This helps Creator On-Premise understand how to locate and identify users within the LDAP directory. For example, "distinguishedName" and "SAMAccountName" are some commonly used labels.

Note: This field will be auto-populated and disabled for Microsoft Active Directory, OpenLDAP, and Novell Directory. For other directories, it will be enabled, and the relevant label must be provided manually.

 SSL CertificateThe Use SSL checkbox can be ticked to verify the certificate from the LDAP server. This allows you to verify the identity of the domain controller and securely encrypt the data being transferred.
Bind User Details

Distinguished Name

Password

The credentials of an LDAP user with permission to authenticate to the directory. This user will be able to perform read operations, allowing search and retrieval of user information for synchronization. For example, the distinguished name can be "sam@zylker.com", "cn=sam, ou=users, dc=zylker, dc=com".
AuthenticationAuthentication Type

The method of authentication to be used for user validation ensuring secure communication between Creator On-Premise and your directory.
Supported authentication types: LDAP, and local authentication, SAML

Note: SAML will only be listed as an authentication option for a domain controller if it has been configured previously. The mapped bind user must complete this configuration in the SAML Configuration module on 'accounts.zoho.com'.

Sync Schedule The frequency in which Creator On-Premise should synchronize with the directory, as well as the exact date and time of the initial sync. This ensures that any changes such as user additions or removals are reflected in Creator On-Premise in a timely manner.

3.2. Groups

After successfully adding domain controllers in Zoho Creator On-Premise, you can proceed to create custom LDAP user groups based on their corresponding directory attributes. This process involves defining specific groups to organize and manage users better from the directory. After group creation, you can easily share applications to these groups, which allows the users in them to access the shared applications according to the permissions assigned to them.

AttributeExplanation
Group Name

A unique name for the group, ensuring that it can be easily identified and referenced later.

Note: Group Name can contain only:

  • 3 to 30 characters
  • The special characters _ * @ \ / ! : | ~ and &
Domain NameA lookup dropdown, which automatically populates with the domain names of all previously added domain controllers. You can select the specific domain from which the group should source its users.
Base DomainThe starting point for the search in the LDAP directory. The search will begin at the specified base domain and include its sub-hierarchy. This limits the scope of the search, making the synchronization process more efficient and accurate by focusing only on the relevant organizational units. For example, if the base domain is "dc=example,dc=com", the search will begin at that domain and include its sub-hierarchy.
Search Scope
  • The depth of user search within the directory.
    One-Level - Users are only synced from the base domain level, meaning only users directly within the specified base domain will be included in the group.
    Subtrees - Allows for a more comprehensive sync, pulling in users not only from the base domain but also from any child domains or subtrees beneath it, offering greater flexibility over the groups.
Group Description

A description to help identify the purpose or characteristics of the group, making it easier to manage and understand its necessity.

Note: Group Description can contain:

  • A maximum of 200 characters
  • The special characters _ * @ \ / ! : | ~ & ( ) . and ,
User Inclusion

The process of determining which users from the selected base domain and scope are to be included in a custom group.

  • All users - Every user from the selected subdomain (either at one-level or from its subtrees as well)
  • Users matching the criteria - Specific users filtered from the subdomain by setting up custom criteria. This allows for targeted group creation based on user attributes, roles, or other criteria, providing a more granular level of control over user groups.

4. Points to note

  • The log details of the sync schedules that take place from your directory to Creator On-Premise can be accessed using the following path:

    C:\Zoho\ZohoCreator\logs\ldap

5. Related topics

Still can't find what you're looking for?

Write to us: support@zohocreator.com

Quick Links