Deployment Task

This article details the JSON body needed to set the LDAP/AD settings based on Aqua 3.5.

This article assumes you have already set up authentication via JWT, or basic authentication. See the API documentation for authentication instructions.


Deployment Steps

GET request to get current settings: 


http(s)://hostURL/api/v1/settings/ldap


POST JSON body to set settings: 


{
"type": "LDAP",
"port": "636",
"enable": true,
    "object_class": "&(objectClass=organizationalPerson)(objectClass=person)",

    "ssl": true,
"verify_cert": false,
"domain": "LDAP_Host",
"base_dn": "dc=company,dc=com",
"user": "LDAP_bind",
"password": "Password",
"role_mapping": {
"Administrator": [
"CN=Admin1,OU=Users,DC=company,dc=com",
"CN=Admin2,OU=Users,DC=company,dc=com"
],
"Auditor": [
"CN=Auditor,OU=Users,DC=company,dc=com"
],
"Scanner": [
"CN=Scanner,OU=Users,DC=company,dc=com"
],
"Vulnerability Operator": [
"CN=Vuln_Operator,OU=Users,DC=company,dc=com"
]
}
}


Note that the type field can be either LDAP or AD.