Cloud vs On Premises

Implementation of the LDAP integration depends on how Ultimo is hosted. Ultimo in the cloud requires a different approach than Ultimo on premises.

On Premises

When Ultimo is hosted on premises, Ultimo will try to make a direct connection with the directory service. The directory service is supposed to run in the same network, so Ultimo is able to make a connection. To setup a successful connection, configure the needed connection settings on the LDAP connector.

Cloud

When Ultimo is hosted in the Cloud, it is usually not possible to make a direct connection with the directory service, as the directory service is unreachable from outside a customers network. To make the integration work in a cloud environment, a webservice and powershell script have to be used.

Powershell

When hosted on Azure, it is possible to download a Powershell script in the LDAP connector manager. This script contains all information necessary (taken from the settings on the LDAP connector) to retrieve data from the directory service and sending the results back to an Ultimo webservice. The Powershell script can be put on the server where the directory service runs or a location from where the directory service can be reached. To periodically send results to Ultimo, make sure the script is scheduled and ran with authorised credentials to connect to the directory service.

Webservices

To receive data from the directory service in Ultimo, a webservice (import connector) is available. The webservice request is send automatically from the Powershell script. The webservice will pass the input to the LDAP connector and execute the standard business logic to create and maintain users and employees.

LDAP connector differences

As setting up a connection with the directory service is not initiated from Ultimo when hosted in the Cloud, not all connection properties apply on the LDAP connector.