Starting with version 4.10, Retain provides an internal LDAP directory service that delivers identity services for the users with Retain User Accounts (listed in the User management dialog box).
You enable Retain’s embedded LDAP service in the NetIQ Advanced Authentication Configuration Panel,
documented in the Retain 4.10: Configuration and Administration guide.
The sole purpose of this service is to provide multi-factor authentication (MFA) for those with Retain User Accounts, including mobile and offline users.
MFA is provided through an integration with NetIQ Advanced Authentication. For configuration instructions, see Configuring Retain for NetIQ Advanced Authentication MFA Support
in the Retain 4.10: Configuration and Administration guide.
WARNING:Do not attempt to manage Retain’s embedded LDAP service using an LDAP management tool. Doing this will break the service.
User and Group creation and deletion, port configuration changes, etc. must be made only through the Retain management UI.