# Active Directory
Active Directory is a directory service developed by Microsoft to manage access to resources in a network. The service runs on a Windows Server.
# How to connect to Active Directory on Workato
The Active Directory connector authenticates with LDAP protocol, which is only available via the on-premise agent.
When setting up connection directly in workato using cloud profile
You don't have to edit on-prem config file, set up all properties directly in workato as shown below.
| Field | Description |
|---|---|
| Connection name | Give this Active Directory connection a unique name that identifies which Active Directory instance it is connected to. |
| On-prem group | Choose an on-premise group if your database is running in a network that does not allow direct connection. Before attempting to connect, make sure you have an active on-premise agent. Refer to the On-premise agent guide for more information. |
| On-prem LDAP connection profile | Profile name defined in your config.yml file in the on-premise agent. This option is visible when you select on-prem group that supports connection profile. |
| On-prem LDAP connection profile | Profile name defined in your config.yml file in the on-premise agent. |
| URL | The URL should be in the format ldap://myserver.example.com:389 or ldaps://myserver.example.com:636 for SSL |
| Username | The username (principal) to use when authenticating with the LDAP server. This will usually be the distinguished name of an admin user |
| Password | The password (credentials) to use when authenticating with the LDAP server |
| Base | The base DN for all requests. When this attribute has been configured, all Distinguished names supplied to and received from LDAP operations will be relative to this LDAP path. |
| Certificate | Path the PEM encoded certificate or a trusted CA |
| SSL certificate | Full content of a PEM encoded client certificate |
| SSL certificate key | Private key for mutual SSL setup. Required if SSL certificate is provided. |
| Trust all | Select true to enable self-signed certificates. |
# Working with the Active Directory connector
# Object types
The Active Directory connector works with all types of objects.
# Sample entry DN
Use this field to define the object that you want to work with. The value in this input field should be an actual entry in your Active Directory instance. This entry will be used to determine the input and/or output fields of the action/trigger.
DN of a sample user entry will look like this:
CN=Workato Integrations,CN=Users,DC=workato,DC=local
Last updated: 3/29/2023, 2:00:59 PM