If you want to authenticate users against an LDAP server, synchronize users from an LDAP server, synchronize users from your Microsoft Entra ID and use Microsoft SSO for the MyQ web UI or authenticate users against a Radius server, you have to add all the servers on this tab.
If you want to authenticate users against MyQ (ID cards, PINs, and passwords), or need to integrate with an external authentication provider, see User Authentication for details.
Users using an LDAP, Microsoft Entra ID, or Radius authentication server cannot sign in on the MyQ Web User Interface with a PIN. However, they can use their PIN on the MyQ Embedded terminals and MyQ Desktop Client up to version 10.0.
Adding a new LDAP server:
Click +Add and select LDAP Server. The new LDAP server properties panel opens on the right side of the screen.
Enter the LDAP Domain.
Select the LDAP Type. You can select from Active Directory, Novell, OpenLDAP, and Lotus Domino. (For Active Directory you must select SSL in the Security field and the Server port must be 636)
If you want the communication with the LDAP to be secured, select the Security protocol that you want to use.
Enter the Server IP address or hostname and the communication port. (For Active Directory you can leave the IP address or hostname empty if you do not know them. The server will then be saved as Auto-discover)
If you have more addresses related to one LDAP server, you can add them by clicking Add.
Click Save. The LDAP server now appears on the list of servers.
Adding a new Microsoft Entra ID Server:
Click +Add and select Microsoft Entra ID Server. The new Microsoft Entra ID server properties panel opens on the right side of the screen.
If you have already added Microsoft Entra ID in the Connections settings, the server appears on the list. If not, click Add new and add the Microsoft Entra ID connection.
If you want your users to be able to log in on the MyQ Web UI via Microsoft single-sign-on, select the Enable Sign in with Microsoft checkbox.
Click Save. The Microsoft Entra ID Server now appears on the list of servers.
Adding a new Radius server:
Click +Add and select Radius server. The new Radius server properties panel opens on the right side of the screen.
Enter the Radius server Name.
Enter the Server IP address or hostname, the communication port and the Shared secret.
If you have more addresses related to one Radius server, you can add them by clicking Add.
Click Save. The Radius server now appears on the list of servers.
When an authentication server is renamed, a server with the old name will still appear in the Authentication server settings of a user profile, alongside the server with the new name. The old server is removed after the following user synchronization propagates changes.