Synology NAS LDAP

Synology NAS authentication with LDAP, powered by Foxpass.

Here's how to set up Synology NAS authentication with LDAP, powered by Foxpass.

First, log into Foxpass and do the following:

  1. Note your Base DN on the dashboard page. Copy/paste it somewhere.
  2. Create an LDAP Binder account with the name 'synology' on the LDAP binders page. Copy/paste the generated password! It is only displayed once.

Synology LDAP configuration:

  • Bring up the Control Panel
  • Choose Domain/LDAP from the left side
  • Choose 'LDAP' in the top tab
  • LDAP Server address: ldap.foxpass.com
  • Encryption: SSL
  • Base DN: (your Base DN, e.g. dc=example,dc=com)
  • Profile: Custom
  • Click 'Edit' next to Profile
  • For the 'Mapping Target' of filter -> passwd, enter objectClass=inetOrgPerson
  • For the 'Mapping Target' of filter -> shadow, enter objectClass=inetOrgPerson
  • For the 'Mapping Target' of filter -> group, enter objectClass=groupOfNames
  • For the 'Mapping Target' of group -> gidNumber, enter HASH(cn)
  • For the 'Mapping Target' of group -> memberUid, enter member
  • For the 'Mapping Target' of passwd -> uidNumber, enter HASH(entryUUID)
  • For the 'Mapping Target' of passwd -> gidNumber, enter HASH(entryUUID)
  • Click 'Apply'
  • Click 'Apply'
  • It will prompt for a Bind DN and a password
  • For Bind DN, enter the Binder account you made above, in this format: cn=synology,[ your base dn ] (e.g. cn=synology,dc=example,dc=com)
  • Enter the generated password from above.
  • Click 'Apply'