Versions Compared

Old Version 1

changes.mady.by.user Kari Mattsson

Saved on

compared with

New Version 2

changes.mady.by.user Anssi Kivinen (Deactivated)

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Permalink: https://doc.oneportal.fi/x/HYEW

Table of Contents


LDAP Server is a built-in application in onePortal™ ApplianceTrivore Identity Service (TIS). For many organisations it is one of the major reasons to use onePortal™TIS. Then again, there are many organisations, which never need LDAP Server functionality.

LDAP Server functionality allows for organisations to use onePortal™ TIS as their central user account and group repository and single point of authentication for any supporting external service. The LDAP interface is safe, as it is read-only and can only be used securely. It obeys the security rules and policies defined in onePortal™TIS. It is currently used for authentication purposes only. LDAP Server must be separately enable for each namespace in their own settings to enable this functionality. The LDAP DIT root DN for each namespace is related to the namespace code of each namespace. For example, if the namespace code is "company", the root DN for that organisation will be "o=company,cn=oneportal".

If your organisation does not currently use this functionality, please fee free to skip this chapter. Also ensure it is not enabled if it is not used.For those interested in more details on LDAP Server implementation, schemas, and internal structure, there is the document “onePortal™ Architecture and Functionality” (DocID 1001-111C). It is a technical guide available on request from support.

Enabling LDAP Server

...

in Web UI

LDAP Server must be enabled by Portal Admin for it to be available for any namespace. It is a prerequisite.

First select “System Preferences” on the Main Menu, and then in Platform section “Base settings” tab “Core”. This opens an important view shown in image below, where many important onePortal™-platform wide selections are made. These selections are normally made only once during or soon after deployment, and then left as is.

...

When LDAP Server is enabled at onePortal™ platform level, it is the responsibility of Namespace Admin to enable it for the namespace. To enable LDAP Server,

...