LDAP Authentication
Starting in 3.6, ProVision supports LDAP authentication. To an LDAP server for authentication, you must perform the following three procedures:
- Configure the LDAP Server
- Test the LDAP Server
- Configure ProVision for LDAP Authentication
LDAP Schema - Example
Code Block |
---|
attributetype (1.3.6.1.4.1.5023215.2.3.21 NAME 'sixConnGroup' SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 ) objectclass ( 1.3.6.1.4.1.5023215.2.4.2 NAME 'sixConnectPermissionsV2' DESC '6Connect Permissions Object v2' SUP top AUXILIARY MUST ( sixConnGroup ) ) |
Configure the LDAP Server
SSH into your openLDAP server and create a new 'ldif' file. Example:
...
The user will now be active in openLDAP and can be used to login to ProVision.
Test the LDAP Server
To query the LDAP server, run the following command on any server which has openLDAP enabled:
...
Code Block |
---|
ldapsearch -h 50.240.195.129 -D "cn=JoeSmith,ou=people,dc=6connect,dc=com" -w testpass "cn=JoeSmith" |
Configure ProVision for LDAP Authentication
To configure the use of LDAP authentication with ProVision, follow the steps below.
...