Get LDAP Integration Settings
GET/api/v32.04/settings/ldap
x-prisma-cloud-target-env: {"permission":"authConfiguration","saas":false,"self-hosted":true}
x-public: true
Returns the LDAP integration settings.
cURL Request
Refer to the following example cURL request:
$ curl -k \
-u <USER> \
-H 'Content-Type: application/json' \
-X GET \
"https://<CONSOLE>/api/v<VERSION>/settings/ldap"
cURL Response
Refer to the following example cURL response:
$ {
"enabled": true,
"url": "ldap://10.176.135.212:379",
"caCert": "",
"searchBase": "",
"groupSearchBase": "ou=Groups,dc=example,dc=org",
"userSearchBase": "ou=Users,dc=example,dc=org",
"accountUpn": "cn=admin,dc=example,dc=org",
"accountPassword": {
"encrypted": "nkMtVY4NN9RccvbVIfLvJw=="
},
"type": "openldap",
"userSearchIdentifier": "cn"
}
Responses
- 200
- default
LdapSettings are the ldap connectivity settings
- application/json
- Schema
- Example (from schema)
Schema
accountPassword object
Secret Stores the plain and encrypted version of a value. The plain version is not stored in a database
Specifies an encrypted value of the secret.
Specifies the plain text value of the secret.
AccountUpn is the user principle name used to connect to the active directory server.
CaCert is cert in PEM format (optional, if not specified, skip_verify flag will be used).
Enabled indicates whether LDAP is enabled.
GroupSearchBase is the LDAP search pattern for groups.
SearchBase is the LDAP search pattern.
Type specifies the LDAP server type (AD or OpenLDAP).
URL is the ldap server url.
UserSearchBase is the LDAP search pattern for users.
UserSearchIdentifier is the user identifier to use for querying open ldap (e.g., cn -> cn=user).
{
"accountPassword": {
"encrypted": "string",
"plain": "string"
},
"accountUpn": "string",
"caCert": "string",
"enabled": true,
"groupSearchBase": "string",
"searchBase": "string",
"type": "string",
"url": "string",
"userSearchBase": "string",
"userSearchIdentifier": "string"
}