From cb9fd38271670ebc83af1d6dfd41dfb48b2c356e Mon Sep 17 00:00:00 2001
From: sdelnevo <sdel_nevo@hotmail.com>
Date: Sat, 17 May 2025 22:34:53 +0100
Subject: [PATCH] example_configs: Add UnifiOS Directory

---
 README.md                                 |  1 +
 example_configs/udm_identity_end_point.md | 50 +++++++++++++++++++++++
 2 files changed, 51 insertions(+)
 create mode 100644 example_configs/udm_identity_end_point.md

diff --git a/README.md b/README.md
index 3e0cf9b..addb94d 100644
--- a/README.md
+++ b/README.md
@@ -646,6 +646,7 @@ folder for help with:
 - [Syncthing](example_configs/syncthing.md)
 - [TheLounge](example_configs/thelounge.md)
 - [Traccar](example_configs/traccar.xml)
+- [UniFi OS](example_configs/udm_identity_end_point.md)
 - [Vaultwarden](example_configs/vaultwarden.md)
 - [WeKan](example_configs/wekan.md)
 - [WG Portal](example_configs/wg_portal.env.example)
diff --git a/example_configs/udm_identity_end_point.md b/example_configs/udm_identity_end_point.md
new file mode 100644
index 0000000..2e908d6
--- /dev/null
+++ b/example_configs/udm_identity_end_point.md
@@ -0,0 +1,50 @@
+# UniFi OS Identity End Point Configuration 
+
+Below are the required settings to allow group syncing within UnifiOS Directory Integration, when enabling LDAP user sync 
+
+- LDAP Version - OpenLDAP 
+- LDAP Server - Your LLDAP Server IP Address - <For Example 10.128.20.3> ldap:// is not required in front of the IP address 
+- Port - Your LLDAP Server Port - (either 6360 or 3890)
+- Root DN - Your Root DN - (For Example dc=domain,dc=com)
+- Bind DN - Your Bind DN - (For Example uid=ldapbinduser,ou=people,dc=domain,dc=com)
+- Password - (Your Bind Password)
+- Synced Scope - All 
+
+After entering the LLDAP service details click the settings tab (the cog icon in the top right of the LDAP screen) in the UDMs Identity Endpoint setup screen, in the LDAP configuration settings enter 
+
+## LDAP Config 
+
+LDAP Version - OpenLDAP   
+Unique Identifier Attribute - entryUUID 
+
+### User 
+
+- User Search Base - ou=people,dc=domain,dc=com 
+- User Object Class - person 
+- User Object Filter - objectClass=person 
+
+### Group 
+
+- Group Search Base - ou=groups,dc=domain,dc=com 
+- Group Object Class - groupOfUniqueNames 
+- Group Object Filter - objectClass=groupOfUniqueNames 
+
+Member Attribute   
+member 
+
+Validate Attribute   
+enter a user e-mail address who has been added in LLDAP , and click test configuration, test show be successful 
+
+Advanced   
+Delegated Authentication = true   
+Suspend user Sync Feature = True 
+
+Sync Scope   
+Sync Scope - all 
+
+You can now go back up to the top of the setup and amend your group mappings as required 
+
+Group Mappings   
+Edit Rule 
+
+You can now select the required LLDAP group to sync with the UDM Identity group