diff --git a/extensions/guacamole-auth-ldap/src/main/java/org/glyptodon/guacamole/auth/ldap/LDAPGuacamoleProperties.java b/extensions/guacamole-auth-ldap/src/main/java/org/glyptodon/guacamole/auth/ldap/LDAPGuacamoleProperties.java
index 724739fdc..6e51c6f99 100644
--- a/extensions/guacamole-auth-ldap/src/main/java/org/glyptodon/guacamole/auth/ldap/LDAPGuacamoleProperties.java
+++ b/extensions/guacamole-auth-ldap/src/main/java/org/glyptodon/guacamole/auth/ldap/LDAPGuacamoleProperties.java
@@ -98,4 +98,30 @@ public class LDAPGuacamoleProperties {
 
     };
 
+    /**
+     * The DN of the user that the LDAP authentication should bind as when
+     * searching for the user accounts of users attempting to log in. If not
+     * specified, the DNs of users attempting to log in will be derived from
+     * the LDAP_BASE_DN and LDAP_USERNAME_ATTRIBUTE directly.
+     */
+    public static final StringGuacamoleProperty LDAP_SEARCH_BIND_DN = new StringGuacamoleProperty() {
+
+        @Override
+        public String getName() { return "ldap-search-bind-dn"; }
+
+    };
+
+    /**
+     * The password to provide to the LDAP server when binding as
+     * LDAP_SEARCH_BIND_DN. If LDAP_SEARCH_BIND_DN is not specified, this
+     * property has no effect. If this property is not specified, no password
+     * will be provided when attempting to bind as LDAP_SEARCH_BIND_DN.
+     */
+    public static final StringGuacamoleProperty LDAP_SEARCH_BIND_PASSWORD = new StringGuacamoleProperty() {
+
+        @Override
+        public String getName() { return "ldap-search-bind-password"; }
+
+    };
+
 }