Page Navigation

Configuration File Details
Set LDAP Users to Use Normal or Custom Authentication
Synchronizing LDAP Users
LDAP Binding with Clear Text or SSL

Announcements

Set LDAP Users to Use Normal or Custom Authentication

As of Cascade 4.2+, the <authentication-mode> element is supported in both user and AD security group policies. It's value can be set to "normal", "custom", or "ldap". When set, users imported under that policy will be configured to use the specified authentication type.

This is useful if you want to import the user's usernames, emails, names into the correct Groups and Roles via LDAP but would like authenticate the users using a password stored in Cascade or an external authentication system.

<authentication-mode> overrides the <authenticate-against-ldap-server> policy option whose "yes" and "no" options only allowed "ldap" and "normal" authentication modes to be set for policies.

The following is an example policy containing the <authentication-mode> option:

<user-policy summary="Main Employees"> <container-identifier>OU=Employees,DC=hannonhill,DC=com</container-identifier> <object-attribute-filter> <name>objectCategory</name> <value>CN=Person,CN=Schema,CN=Configuration,DC=hannonhill,DC=com</value> </object-attribute-filter> <username-attribute>sAMAccountName</username-attribute> <email-attribute>userPrincipalName</email-attribute> <full-name-attribute>displayName</full-name-attribute> <enable-new-users>yes</enable-new-users> <convert-usernames-to-lowercase>yes</convert-usernames-to-lowercase> <authentication-mode>custom</authentication-mode> <system-groups remove-from-other-groups="yes"> <group> <name>development</name> </group> </system-groups> <system-roles remove-from-other-roles="yes"> <role>Administrator</role> <role>Publisher</role> </system-roles> </user-policy>

Page Navigation

Most Read

Announcements

Set LDAP Users to Use Normal or Custom Authentication

Knowledge Base Beta Feedback Form