Active Directory Integration / LDAP Integration Login for Intranet Sites plugin allows you to authenticate your users using their Active Directory/LDAP credentials into your WordPress site. It allows you to map the Active Directory/LDAP attributes to the WordPress user profile attributes and also lets you assign WordPress roles to your LDAP/Active Directory users. Additionally, the plugin has a user authentication report feature, which logs each unsuccessful Active Directory/LDAP authentication request made, providing additional security functionalities.
This plugin allows users to authenticate against various Active Directory /other LDAP Servers like:
Microsoft Active Directory
Azure Active Directory
Sun Active Directory
OpenLDAP Directory
JumpCloud
FreeIPA Directory
Synology
OpenDS and other LDAP directories.
The LDAP/Active Directory Login (AD Login) for Intranet plugin includes user management features as well, such as adding users from Active Directory or another LDAP Directory who are not registered in WordPress, WordPress role mapping, LDAP/Active Directory to WordPress attribute mapping, and more. We also provide additional add-ons that enhance the functionality of the basic plugin such as enabling Kerberos/NTLM SSO Authentication, importing users from Active Directory/LDAP Server to WordPress, creating users in Active Directory/LDAP server when created/registered in the WordPress site, sync users between the Active Directory/LDAP server and WordPress site, sync LDAP/Active Directory Profile Picture thumbnail attribute to WordPress user profile picture, integration with third-party plugins and more.
Perform LDAP Authentication for any user trying to log into the WordPress website whose Active Directory/LDAP credentials are stored in the Active Directory/LDAP server. Additionally, login with WordPress credentials is also supported.
Upon authentication, keep the WordPress User’s profile information in sync with the Active Directory/other LDAP Directories.
Automatic User Registration in WordPress: Automatically create WordPress users who are present in the LDAP server/Active Directory upon login.
Role Mapping: You can select a default WordPress role and assign it to all the Active Directory/LDAP users while LDAP/AD login is performed.
Attribute mapping: Map the LDAP/Active Directory mail attribute to the WordPress user email and sync upon every successful LDAP/Active Directory Login (AD Login).
LDAPS (LDAP Secure Connection) support: Supports establishing Secure Connection between WordPress site and Active Directory/LDAP server via LDAPS protocol, this ensures protection against credential theft.
Authentication Report: Keep logs of all the Active Directory/LDAP users who try to authenticate on your WordPress website and fail. A lot of the time these are security risks. The LDAP User Authentication report will give you a list of these users, you can also export a CSV of this report.
Automatic fetching of LDAP Organizational Units from LDAP Server/Active Directory while configuring Search Base for LDAP/AD Login.
Test connection to your Active Directory/other LDAP Directory while configuring LDAP server information in the plugin.
Test authentication using credentials stored in your Active Directory/other LDAP Directory after configuring LDAP server information in the plugin.
Ability to test against demo Active Directory/other LDAP Directory and demo credentials. You can do this using the demo LDAP Directory credentials from here.
Support Integration with hybrid Active Directory infrastructure.
Compatible with the latest versions of WordPress and PHP.
We provide extensive easy-to-understand documentation as well as YouTube setup videos which will assist you while configuring our LDAP Active Directory plugin.
You can find out how to configure the Active Directory Integration / LDAP Integration plugin through the video below
This LDAP/Active Directory Login (AD Login) plugin is free to use under the MIT/Expat license. If you wish to use enhanced features, you may purchase our Premium version. We also provide additional add-ons that enhance the functionality of the basic WordPress LDAP/AD Login plugin. This will help support further development of our LDAP plugin, and in turn, serve our customers better.
Our premium plugin comes with additional features along with the aforementioned Free Plugin Features.
Login With Any LDAP Attribute Of Your Choice: Authenticate users against multiple LDAP/Active Directory username attributes like sAMAccountName, UID, UserPrincipalName, mail, cn, or any other custom LDAP attribute(s) according to your LDAP Active Directory/any other LDAP directory.
Auto-register of LDAP users in WordPress site: Allows users of Active Directory/other LDAP Directory to auto-register in WordPress.
Advanced Role Mapping: Assign specific WordPress roles based on the LDAP/Active Directory group memberships or the Organizational Units that are set in the LDAP Server/Active Directory. You can also assign a default WordPress role to all the LDAP/Active Directory users.
Fetch LDAP groups automatically for Role Mapping: Fetches the LDAP/AD Security Groups present in your Active Directory/other LDAP Directory.
Attribute Mapping: Configure and fetch the LDAP/AD attributes such as UID, cn (common name), mail, telephoneNumber, givenName, sn, sAMAccountName, and map with WordPress user profile attributes upon LDAP/AD Login.
Custom Attribute Mapping: You can create your own WordPress custom user profile attributes which is a nifty tool if your organization has various attributes present in the Active Directory/LDAP server.
Custom Search Filter: Allows you to restrict user authentication on the basis of LDAP/Active Directory security groups, userAccountControl etc.
Authenticate Users from Multiple LDAP Search Bases: Authenticate users against multiple search bases from your Active Directory/other LDAP Directory.
Automatic LDAP/Active Directory Users Search Base Selection: Fetches and allows you to select the Organization Unit (OU) present in your Active Directory/other LDAP Directory for the user’s search base.
Multiple LDAP Directories Configuration: Perform LDAP/Active Directory authentication against multiple directories through sequential search or on the basis of domain membership.
WordPress to LDAP User Profile Sync: Update/Sync the user profile in Active Directory/other LDAP Directory when updated from WordPress.
Authenticate users from LDAP and WordPress: Enable all WordPress users or WordPress administrators to login even if they are not present in the LDAP/Active Directory.
Redirect to Custom URL after Authentication: Redirect to WordPress Profile page/ Home page/ Custom URL after successful LDAP/Active Directory authentication.
Detailed User Authentication Report: Keep track of user’s authentication requests for your WordPress site. Get detailed logging information for FAILED LDAP Authentication of individual users.
Support for Import/Export Plugin Configuration: Export your LDAP plugin configuration from the staging/testing site and import it to the production/live site. This will save you the hassle of reconfiguring the LDAP plugin.
Multisite Support: The plugin supports LDAP/AD Login integration for multisite environments as well.
Restrict login based on WordPress roles: Restrict LDAP/Active Directory login (AD Login) to certain users based on the roles which are assigned on WordPress.
Provides seamless integration with third-party plugins such as BuddyBoss, BuddyPress, Ultimate Member, Gravity forms, Groups, and eMember.
You can find out Active Directory Integration / LDAP Integration Premium Version Features through the video below
Active Directory Single Sign-On (SSO) using Kerberos/NTLM: Enable Active Directory SSO (auto-login) on your WordPress site for Domain Joined Machines using Kerberos/NTLM SSO protocol. This supports Kerberos SSO authentication for Linux with Apache server, Windows authentication on IIS server, Windows with Apache server, etc. We also support Active Directory SSO solutions using the GSSAPI module as well.
Sync Users LDAP Directory: Sync/Import WordPress users from Active Directory/other LDAP directory. Schedules can be configured for the synchronization to run at a specific time and after a specific time interval. Additionally, you can also enable WordPress to LDAP/Active Directory user sync which would enable you to update/create an LDAP/AD user’s profile.
Sync BuddyPress Extended Profiles: Update the BuddyPress users extended profiles with Active Directory/LDAP Server attributes upon LDAP/AD login.
Password Sync with Active Directory/LDAP Directory: Update your Active Directory/other LDAP Directory user password, the WordPress password of LDAP users will be synced to the LDAP server when you update or reset it in WordPress.
Ultimate Member Login and Profile Integration: Enable LDAP/AD Login for Ultimate Member Login form and map Active Directory / other LDAP Directory User Profile attributes with ultimate member profile page.
Page/Post Restriction: This allows you to control access to your site’s content (pages/posts) based on LDAP groups/WordPress roles.
Third-Party Plugin User Profile Integration: Update user profiles created using any third-party plugin with information from your Active Directory/other LDAP Directory stored in WordPress user meta table.
Gravity Forms Integration: Populate Gravity Form fields with information from Active Directory / other LDAP Directory. You can integrate with unlimited forms.
Sync BuddyPress Groups: Assign BuddyPress groups to users based on LDAP/AD group membership in Active Directory / other LDAP Directory.
MemberPress Plugin Integration: Login to MemberPress-protected content with Active Directory / other LDAP Directory Credentials.
eMember Plugin Integration: Login to eMember profiles with Active Directory / other LDAP Directory Credentials.
WP Groups Plugin Integration: Assign users to WordPress groups created using the Groups plugin based on their LDAP/AD groups memberships present in the Active Directory / LDAP Server. You can map any number of Active Directory groups with WordPress groups.
With authentication being one of the essential functions of the day, a fast and priority support (provided in paid versions) ensure that any issues you face on a live production site can be resolved in a timely manner.
Regular updates to the premium plugin compatible with the latest WordPress version. The updates include security and bug fixes. These updates ensure that you are updated with the latest security fixes.
Ensure timely updates for new WordPress/PHP releases with our premium plugins and compatibility updates to make sure you have adequate support for smooth transitions to new versions of WordPress and PHP.
Reasonably priced with various plans tailored to suit your needs.
Easy to setup with lots of support and documentation to assist with the setup.
High level of customization and add-ons to support specific requirements.
WordPress Login and User Management Plugin: This plugin offers several functionalities, including bulk user management, user redirection based on WordPress roles, user session management, auto-logout users, and the ability to make a page or post private or public based on an ID or URL.
miniOrange supports API Security use cases to protect and secure your APIs using our product XecureAPI which helps you to enable Authentication methods ( like OAuth, SAML, LDAP, API Key Authentication, JWT Authentication etc ), Rate Limiting, IP restriction and much more on your APIs for complete protection.
miniOrange supports Single-Sign-On (SSO) into a plethora of applications and supports various protocols like(RADIUS, SAML, OAuth, LDAP/LDAPS, using various IDP’s like Azure Active Directory, Microsoft On-Premise Active Directory, Octa, ADFS, etc.
Active Directory Integration/LDAP Integration requires a few prerequisites before you can enable LDAP login for your WordPress sites.
I. Active Directory Integration/LDAP Integration requires a few PHP Modules to be enabled. Make sure these are enabled.
PHP LDAP Module: Step-1: Open the php.ini file. Step-2: Search for “extension=php_ldap.dll” in the php.ini file. Uncomment this line, if not present then add this line to the file and save the file.
OPENSSL Module: Step-1: Open the php.ini file. Step-2: Search for “extension=php_openssl.dll” in the php.ini file. Uncomment this line, if not present then add this line to the file and save the file.
II. To install Active Directory Integration/LDAP Integration the minimum requirements are: 1. WordPress version 5.0 2. PHP version 5.2.0
From your WordPress dashboard
Visit Plugins > Add New.
Search for Active Directory Integration for Intranet Sites. Find and Install Active Directory Integration for Intranet Sites.
Activate the plugin from your Plugins page.
From WordPress.org
Download Active Directory Integration for Intranet Sites.
Unzip and upload the ldap-login-for-intranet-sites directory to your /wp-content/plugins/ directory.
Activate Active Directory Integration for Intranet Sites from your Plugins page.
Once Activated
Go to Settings-> LDAP Login Config, and follow the instructions.
Click on Save.
Make sure that if there is a firewall, you OPEN THE FIREWALL to allow incoming requests to your LDAP from your WordPress Server IP and open port 389 (636 for SSL or LDAPS).