Category Filter

How to Configure LDAP for macOS devices?

LDAP (Lightweight Directory Access Protocol) is a protocol to access data from the corporate Active Directory over an IP network. You can configure LDAP settings for macOS devices via the MDM console. This will let you sync contacts currently configured in the corporate LDAP server with the Mac machine. The user can access these synced contacts from the contacts app on the device.


LDAP configuration for macOS is available only on Ultimate and Ultra subscription plans.

Configure LDAP settings via policy

To sync the contacts on the corporate LDAP server with the device,

  1. Login to your Hexnode MDM portal.
  2. Navigate to Policies > New Policy. Assign a suitable name and description (optional) for the policy. You can also choose to continue with an existing policy.
  3. Go to macOS > Accounts > LDAP. Click Configure.

LDAP account settings

Settings Description
Account Description A simple description of the LDAP account, preferably a name, to differentiate between multiple configurations.
Username The username that should be used to connect to LDAP. Supports the use of wildcards like “%email%” and “%alternativeemail%”.
Password The password associated with specified LDAP username.
Host Name The DNS host name or the IP address of the LDAP directory server.
Use SSL If enabled, SSL will be used to establish a secure connection between the device and the LDAP server.

Associate the policy with devices / groups

If the policy is not saved,

  1. Navigate to Policy Targets > +Add Devices.
  2. Choose the target devices and click Ok. Click Save.

You can also choose to associate the policy with device groups, users, user groups, or domains from the left pane under Policy Targets.

If the policy has been saved,

  1. Go to Policies tab. Choose the desired policy.
  2. Click on Manage drop-down, select Associate Targets.
  3. Choose the target entities and click Associate.