Difference between revisions of "Integration/LDAP"
Jump to navigation
Jump to search
old>Admin |
old>Admin |
||
Line 7: | Line 7: | ||
Credential validation (1) is mandatory, while group synchronization (2) and automatic user creation (3) is optional. | Credential validation (1) is mandatory, while group synchronization (2) and automatic user creation (3) is optional. | ||
In case the LDAP is not responding the server can be allowed to use local application credentials | In case the LDAP is not responding the server can be allowed to use local application credentials: | ||
In order to communicate with the LDAP server, the Tempus Serva application will need its own acount to carry out many of the synchronization operations | * ldapAuthenticationFallback | ||
In order to communicate with the LDAP server, the Tempus Serva application will need its own acount to carry out many of the synchronization operations: | |||
* ldapServer | * ldapServer | ||
* ldapUsername | * ldapUsername | ||
* ldapPassword | * ldapPassword | ||
No permissions except lookup rights are required for this role. |
Revision as of 13:54, 8 March 2013
Different options for LDAP integration exists
- Validate credentials: Check username/password against LDAP
- Synchronize groups: Add/remove groups as defined in the LDAP
- Create missing users: Create users with correct LDAP credentials
Credential validation (1) is mandatory, while group synchronization (2) and automatic user creation (3) is optional.
In case the LDAP is not responding the server can be allowed to use local application credentials:
- ldapAuthenticationFallback
In order to communicate with the LDAP server, the Tempus Serva application will need its own acount to carry out many of the synchronization operations:
- ldapServer
- ldapUsername
- ldapPassword
No permissions except lookup rights are required for this role.