LDAP configuration (macOS user policy)

With the LDAP configuration you add user information from an LDAP directory to the macOS Address Book app.

Note To configure a Mac to join an Active Directory domain, use the Directory service configuration. See Directory service configuration (macOS device policy).



Account description

A description of the LDAP connection.

Host name

The host name or IP address of the LDAP server.

User name

The login credentials of the user Sophos Mobile uses to connect to the LDAP server.



The connection to the LDAP server is secured by SSL or TLS (depending on what the server supports).

Search settings

The nodes in the LDAP tree where to start searching from, and what scope to search in.


The path to the node the search starts from. For example: ou=users,o=my company


The scope of sub-nodes to include in the search:
  • Base node only: Only the base node.
  • Base node and direct child nodes: The base node and its child nodes, i.e. the first-level sub-nodes.
  • Base node and all sub-nodes: The base node and all sub nodes to infinite depth.


A description of the search setting.