{
  "id": "map-ldap-groups-to-roles",
  "title": "Map LDAP groups to roles",
  "url": "https://redis.io/docs/latest/operate/rs/7.8/security/access-control/ldap/map-ldap-groups-to-roles/",
  "summary": "Describes how to map LDAP authorization groups to Redis Enterprise roles using the Cluster Manager UI.",
  "content": "\nRedis Enterprise Software uses a role-based mechanism to enable LDAP authentication and authorization.  \n\nOnce LDAP is enabled, you need to map LDAP groups to Redis Enterprise access control roles.\n\n## Map LDAP groups to roles\n\nTo map LDAP groups to access control roles in the Cluster Manager UI:\n\n1. Select **Access Control \u003e LDAP \u003e Mapping**.\n\n    \nYou can map LDAP roles when LDAP configuration is not enabled, but they won't have any effect until you [configure and enable LDAP]().\n    \n\n    \n\n1.  Select the **+ Add LDAP Mapping** button to create a new mapping and then enter the following details:\n\n    | _Setting_ | _Description_ | \n|:----------|:--------------|\n| **Name** | A descriptive, unique name for the mapping |\n| **Distinguished Name** | The distinguished name of the LDAP group to be mapped.  \u003cbr/\u003eExample: `cn=admins,ou=groups,dc=example,dc=com` |\n| **Role** | The Redis Software access control role defined for this group |\n| **Email** | _(Optional)_ An address to receive alerts|\n| **Alerts**  | Selections identifying the desired alerts. |\n\n    \n\n1.  When finished, select the **Save** button.\n\nCreate a mapping for each LDAP group used to authenticate and/or authorize access to Redis Enterprise Software resources.\n\nThe scope of the authorization depends on the access control role:\n\n- If the role authorizes admin management, LDAP users are authorized as cluster management administrators.\n\n- If the role authorizes database access, LDAP users are authorized to use the database to the limits specified in the role.\n\n- To authorize LDAP users to specific databases, update the database access control lists (ACLs) to include the mapped LDAP role.\n\n## More info\n\n- Enable and configure [role-based LDAP]()\n- Update database ACLs to [authorize LDAP access]()\n- Learn more about Redis Enterprise Software [security and practices]()\n",
  "tags": ["docs","operate","rs"],
  "last_updated": "2026-04-01T08:10:08-05:00"
}