You can use LDAP to
authenticate end users who access applications or services through
Captive Portal and authenticate firewall or Panorama administrators
who access the web interface.
You can also
connect to an LDAP server to define policy rules based on user groups.
For details, see Map
Users to Groups.
Add an LDAP server
profile.
The profile defines how the firewall connects to the LDAP
server.
Select
Device
Server Profiles
LDAP
and
Add
a
server profile.
Enter a
Profile Name
to identify
the server profile.
Add
the LDAP servers (up to
four). For each server, enter a
Name
(to
identify the server),
LDAP Server
IP address
or FQDN, and server
Port
(default 389).
If you use an FQDN address object to identify the
server and you subsequently change the address, you must commit
the change for the new server address to take effect.