# LDAP This section includes a general guide for configuring an LDAP provider and guides for specific LDAP providers in Immuta. The getting started section below provides best practices for setup and configuration. ## Getting started with LDAP 1. **Start by creating a few initial** [**subscription**](https://documentation.immuta.com/saas/govern/secure-your-data/authoring-policies-in-secure/section-contents) **and** [**data policies**](https://documentation.immuta.com/saas/govern/secure-your-data/authoring-policies-in-secure/data-policies) **so that you know the user metadata you will need from your IAM.** For example, will user attributes be used to author policies, or will groups also be needed? The subscription and data policies below illustrate the need for both groups and attributes to be imported from the IAM to enforce appropriate access controls: 1. **Subscription policy**: Allow all users in the `Marketing` group to access data sources tagged `Marketing`. 2. **Data policy**: Mask all columns tagged `Location` except for users with the attribute `AccessLevel.Gold`. 2. [**Validate that your provider is supported by Immuta.**](https://documentation.immuta.com/saas/releases/support-matrix#iam-providers) If your provider is not listed, reach out to your Immuta representative for guidance. 3. [**Configure your LDAP provider in Immuta** **with LDAP sync enabled**](https://documentation.immuta.com/saas/configuration/people/section-contents/how-to-guides/ldap/ldap-protocol)**.** For guidance specific to Okta, see the [Okta LDAP interface page](https://documentation.immuta.com/saas/configuration/people/section-contents/how-to-guides/ldap/okta-ldap). ## Next steps Once your IAM is configured, complete one of the following tasks: * [Register data in Immuta](https://documentation.immuta.com/saas/configuration/integrations/data-and-integrations/registering-metadata) * [Author policies](https://documentation.immuta.com/saas/govern/secure-your-data/authoring-policies-in-secure)