Quick Start Guide for Single Sign-On
docker exec napsa-backend pip install ldap3Edit /var/NAPSA-ERM/backend/.env:
AD_ENABLED=true
AUTH_MODE=hybrid
AD_SERVER_URL=ldap://your-dc.napsa.co.zm:389
AD_DOMAIN=NAPSA.CO.ZM
AD_BASE_DN=DC=napsa,DC=co,DC=zm
AD_BIND_USER=svc_erm_ldap
AD_BIND_PASSWORD=YourServiceAccountPassword
AD_USER_SEARCH_BASE=OU=Employees,DC=napsa,DC=co,DC=zmdocker restart napsa-backendpython3 /var/NAPSA-ERM/test_ad_integration.py| Endpoint | Purpose |
|---|---|
GET /api/v1/ad/status |
Check if AD is enabled |
POST /api/v1/ad/test-connection |
Test AD connection |
POST /api/v1/ad/sync-users |
Import all AD users |
GET /api/v1/ad/search-users?query=name |
Search AD users |
POST /api/v1/ad/import-user?username=XXX |
Import specific user |
Default group-to-role mapping:
/var/NAPSA-ERM/AD_INTEGRATION_GUIDE.md