Configuring External Security Authentication with LDAP
Use the following procedure to configure external LDAP server.
Important:
Ensure that there is no new entry for an LDAP connection in <Software AG_directory>\profiles\ODE\ configuration\jaas.config.
To configure LDAP security authentication
1. Stop the OneData server.
2. Navigate to the directory <Software AG_directory>\profiles\ODE\configuration\com.softwareag.platform.config.propsloader.
3. For each OneData repository in your environment, create a properties file with the name com.softwareag.jaas.realm.pid-<Repository_ID>JaasConfig.properties.
For example, if you have two repositories, Repo1 and Repo2 in your environment , then you must create the following two properties files for them:
com.softwareag.jaas.realm.pid-onedataRepo1JaasConfig.properties com.softwareag.jaas.realm.pid-onedataRepo2JaasConfig.properties 4. Add the following content to the to all the com.softwareag.jaas.realm.pid-<Repository_ID>JaasConfig.properties properties files:
realm=onedata.<Repository_ID>
0.option.java.naming.referral=follow
0.option.java.naming.provider.url="ldap://<LDAP_Server>:<LDAP_Port>/"
0.flag=required
@secure.0.option.bindCredential=<Password_in_Clear_Text>
0.option.bindDN="uid=<LDAP_User_Name>,ou=<Organizational_Unit>,dc=<Domain_Component_1>,
dc=<Domain_Component_2>"
0.module=com.datafoundations.onedata.security.auth.module.LdapLoginModule
0.option.baseFilter=(sAMAccountName={0})
0.option.baseCtxDN="ou=<Organizational_Unit>,dc=<Domain_Component_1>,dc=<Domain_Component_2>"
0.option.debug=false
Important:
Do not change the values of the following properties:
0.option.java.naming.referral=follow
0.flag=required
0.module=com.datafoundations.onedata.security.auth.module.LdapLoginModule
0.option.debug=false
5. Save and close the files.
6. Restart OneData.
OneData now authenticates the users against the configured external LDAP server.