In addition to local accounts, the administrator can also permit LDAP accounts for the various roles. These accounts are managed centrally on an LDAP server (in particular also the passwords).

In order to use LDAP accounts, the access to an LDAP server must be configured. In the Management Cluster, access to the LDAP server can be configured specifically for one SE server. See section "Configuring access to an LDAP server". When this requirement is satisfied, the administrator, when creating an account, can release an LDAP account by means of the account type for the desired role. The simultaneous use of a central and a local identifier of the same name is not possible. When an LDAP account is removed, the access of this account is also locked again.