Configure LDAP

If your organization uses an LDAP directory for user management, you can add these users to NeoLoad. This lets you grant your LDAP users access to NeoLoad and manage their permissions and roles.

You can add your LDAP users to NeoLoad in Settings > Users. Configure LDAP in three steps:

  1. Connect NeoLoad to your LDAP directory.

  2. Retrieve your users or groups from the directory so that NeoLoad can map them.

  3. Add the retrieved users to NeoLoad user list to assign authorizations and manage them.

After setting up LDAP, you can temporarily deactivate it by disabling the Enable LDAP toggle on top-right of the LDAP configuration page. Authorized users won't be able to access NeoLoad until you enable LDAP again.

Connect to your LDAP directory

To connect your LDAP directory to NeoLoad, go to Users > Configure LDAP > Configuration. Fill in the following details in the Connection section:

This is the URL of your directory with the following structure: <protocol>://<hostname>:<port number>. Here's how to create it:

  • protocol: Defines how your connection is secured. Choose ldap for an unencrypted connection or ldaps for a connection encrypted over SSL. Note that NeoLoad doesn't support LDAPS over SSL with required client certificates.

  • hostname: Defines the DNS name or IP address of your LDAP server.

  • port number: Defines the connection port of your LDAP server. Can be 389 or 3268.

Select one of the options from the dropdown menu:

  • Anonymous: Use if you don't want to specify any authentication properties.

  • Simple authentication: Use to send the customer DN and password unencrypted for authentication.

  • Digest MD5: Use the encrypted authentication mechanism for an LDAP v3 server or for an Active Directory server.

  • Cram MD5: Use a challenge-response authentication mechanism (CRAM) based on the HMAC-MD5 algorithm.

Enter the LDAP account name that NeoLoad will use to connect to the directory.

Enter the password associated with the LDAP account name. NeoLoad saves and stores it. You can update it later.

Then, select Save to save the configuration. Optionally, select Test to check the connection settings before saving.

Retrieve users

After you connect to LDAP, you need to retrieve and map user attributes to NeoLoad so that you can add them to your user list.

To retrieve users, enter the following details in the Users section:

  • Base DN: Choose an element from the directory that will serve as the starting point for your user search.

  • Filter: If needed, add more LDAP search filters. For example, "!(mail=*.com)".

  • User ID attribute: Enter an LDAP attribute to map to user IDs.

  • User first name attribute: Enter an LDAP attribute to map to user first names.

  • User last name attribute: Enter an LDAP attribute to map to user last names.

  • User email attribute: Enter an LDAP attribute to map to user email addresses.

Optionally, select Test before saving to check that you mapped the users correctly. NeoLoad will display the first 10 users from your query if the search is successful.

Then, select Save to save the configuration. If the connection is successful, you can continue with adding and authorizing users.

Retrieve groups

In addition to individual users, NeoLoad lets you retrieve both static and dynamic LDAP groups of users.

To retrieve groups from the LDAP directory, enable the Enable groups toggle and enter the group configuration parameters:

To add a static group, select Static in the Group type field.

A static group is a manually maintained list of users. To map the attributes of a static group to NeoLoad, specify its Base DN, object class, group ID attribute, group name attribute, group member attribute, and group member format.

To add a dynamic group, select Dynamic in the Group type field.

A dynamic group automatically includes users who match a specific LDAP search filter or rule. Because the LDAP server calculates group membership dynamically, NeoLoad only needs the group member attribute to find the corresponding users in the directory.

Optionally, select Test before saving to check that the search settings are correct. NeoLoad will display the first 10 users from your query if the search is successful.

Then, select Save to save the configuration. If the connection is successful, you can continue with adding and authorizing users.

Assign authorizations and manage users

After you configure the connection to LDAP directory and retrieve user data, you can add these users to your user list and authorize them to have access to NeoLoad.

Here's how you can manage your users in NeoLoad:

To manage your LDAP users, first add them to your NeoLoad user list. Follow these steps:

  1. Go to Configure LDAP > Authorizations and select Add users to start.

  2. In the Add users dialog, start typing the user name or ID or select the users from the dropdown list.

  3. Assign the Role to the selected users.

  4. Select Add to add the users to your user list.

Now these users have access to NeoLoad, and you can manage them. Note that LDAP users will appear in the Authorizations list instantly, but they will show in the shared NeoLoad Users list after they sign in for the first time.

If you chose static groups during configuration, you can now add the users from those groups to your NeoLoad user list. To do so, follow these steps:

  1. Go to Configure LDAP > Authorizations and select Add groups.

  2. Start typing the Name or Group ID or select groups from the dropdown list.

  3. Chose the Role for users of the group.

  4. Select Add.

Now the users from this group have access to NeoLoad, and you can manage them. These users will appear in the Authorizations list instantly, but they will show in the shared NeoLoadUsers list after they login for the first time.

Note that if you change the type of group in the future, the users from the previously authorized group will lose access to NeoLoad. After retrieving the new group, you will need to reauthorize it.

If you chose dynamic groups during configuration, you can now add the users from those groups to your NeoLoad user list. To do so, follow these steps:

  1. In the Authorizations tab, select Add groups.

  2. Enter the Group ID to define the attributes of the group users. For example: dn: cn=group0,ou=Groups,dc=intranet,dc=company,dc=com

  3. Create the name for the group.

  4. Choose the Role for users of the group.

  5. Select Add.

Now the users from this group have access to NeoLoad, and you can manage them. These users will appear in the Authorizations list instantly, but they will show in the shared NeoLoadUsers list after they sign in for the first time.

Note that if you change the type of group in the future, the users from the previously authorized group will lose access to NeoLoad. After retrieving the new group, you will need to reauthorize it.

You assign the user's role when you add them to the user list, but you can change the role later.

You can assign any new role to an individual user. For group users with roles defined at the group level, you can only assign a role above their current role (Tester → Admin).

To change the user's role, follow these steps:

  1. In the Authorizations tab, right-click the user and select Edit role. Alternatively, select a user and open the More options menu on the right.

  2. Choose a new Role from the dropdown list.

  3. Select Save.

Note that you can't edit the LDAP user's role in the shared NeoLoad Users list because their role depends on the LDAP configuration and authorization.

To assign LDAP users to workspaces before they sign in to NeoLoad for the first time, go to Account settings > Workspaces and follow these steps:

  1. Select the workspace you want to add users to.

  2. Select + Add members at the top-right.

  3. Start typing the user's name or login. Alternatively, select Open to see all your users sorted by their source:

    • Users who haven't signed in to NeoLoad are marked as LDAP.

    • Users who've signed in are marked as Authorized LDAP.

  4. Choose a Workspace from the dropdown list.

  5. Select Save.

After LDAP users sign in for the first time, you can assign them to workspaces directly from your user list in Account settings > Users. To do so, follow these steps:

  1. Right-click or select the user, then select Manage workspace(s).

  2. Start typing the name of the workspace you want to assign the user to. Select the workspace from the dropdown list.

  3. Select Save.

You can remove a users' access to NeoLoad. This action will keep the user in your LDAP directory.

To remove access, go to Authorizations tab in LDAP configuration page. Right-click the user and select Remove. Alternatively, select a user and then Remove in the top-right of the page.

Note that you can't remove the LDAP user's access from the shared NeoLoad Users list. If you delete an LDAP user from this list, you'll only remove their data, but not their access to NeoLoad.