Web Services LDAP Configuration Guide



Similar documents
Océ LDAP Adapter User Guide

Configuring and Using the TMM with LDAP / Active Directory

HP Device Manager 4.7

Crystal Reports Installation Guide

HP Asset Manager. Software version: Integration with software distribution and configuration management tools

Quick Scan Features Setup Guide. Scan to Setup. See also: System Administration Guide: Contains details about setup.

CA Nimsoft Monitor Snap

DocAve for Office 365 Sustainable Adoption

Application Note. ShoreTel 9: Active Directory Integration. Integration checklist. AN June 2009

OpenLDAP Oracle Enterprise Gateway Integration Guide

Version 1.0 June Xerox 4112 /4127 Copier/Printer Backup/restore/migrate tools

Web Interface with Active Directory Federation Services Support Administrator s Guide

How To - Implement Single Sign On Authentication with Active Directory

Microsoft SQL Server Installation Guide

CA Nimsoft Service Desk

QuickStart Guide for Mobile Device Management

Xerox DocuShare Security Features. Security White Paper

Setting up LDAP settings for LiveCycle Workflow Business Activity Monitor

IBM Endpoint Manager. Security and Compliance Analytics Setup Guide

Version 3.8. Installation Guide

AvePoint Meetings for SharePoint Online. Configuration Guide

USER GUIDE. Lightweight Directory Access Protocol (LDAP) Schoolwires Centricity

Configuring User Identification via Active Directory

QuickStart Guide for Mobile Device Management. Version 8.6

SMART Vantage. Installation guide

Microsoft Active Directory Oracle Enterprise Gateway Integration Guide

Troubleshooting Active Directory Server

ACE Management Server Deployment Guide VMware ACE 2.0

Operating Instructions Software (Fax Driver)

HP Business Availability Center

Administrator Operations Guide

User Guide. DocAve Lotus Notes Migrator for Microsoft Exchange 1.1. Using the DocAve Notes Migrator for Exchange to Perform a Basic Migration

Operating Instructions

Configuring the Cisco ISA500 for Active Directory/LDAP and RADIUS Authentication

Customer Tips. Configuring Color Access on the WorkCentre 7328/7335/7345 using Windows Active Directory. for the user. Overview

Automation Engine 14. Installation Guide

Active Directory Provider User s Guide

Version 8.2. Tivoli Endpoint Manager for Asset Discovery User's Guide

Integrating LANGuardian with Active Directory

Utilizing LDAP for User Profile and Corporate Structure Integration

Security Provider Integration Kerberos Authentication

Oracle Enterprise Manager

Monitor Print Popup for Mac. Product Manual.

PowerSchool Student Information System

QuickStart Guide for Managing Mobile Devices. Version 9.2

How to Secure a Groove Manager Web Site

HP Device Manager 4.6

Defender Token Deployment System Quick Start Guide

WebSpy Vantage Ultimate 2.2 Web Module Administrators Guide

DameWare Server. Administrator Guide

WatchDox for Windows User Guide. Version 3.9.0

RELEASE NOTES Product Version: 7.2 Date: November, 2015

XenClient Enterprise Synchronizer Installation Guide

Adeptia Suite LDAP Integration Guide

IBM Cloud Orchestrator Content Pack for OpenLDAP and Microsoft Active Directory Version 2.0. Content Pack for OpenLDAP and Microsoft Active Directory

LDAP User Service Guide 30 June 2006

Citrix Access Gateway Enterprise Edition Citrix Access Gateway Plugin for Java User Guide. Citrix Access Gateway 8.1, Enterprise Edition

Dolphin Ocean Server and Dolphin Mobile Client Installation Guide for Android and ios. May 2012

Two Factor Authentication in SonicOS

CA Nimsoft Monitor. Probe Guide for Active Directory Server. ad_server v1.4 series

Configuring IBM Cognos Controller 8 to use Single Sign- On

The cloud server setup program installs the cloud server application, Apache Tomcat, Java Runtime Environment, and PostgreSQL.

Polycom RealPresence Resource Manager System Getting Started Guide

Oracle Virtual Desktop Infrastructure. VDI Demo (Microsoft Remote Desktop Services) for Version 3.2

Millennium Drive. Installation Guide

Lepide Active Directory Self Service. Installation Guide. Lepide Active Directory Self Service Tool. Lepide Software Private Limited Page 1

WirelessOffice Administrator LDAP/Active Directory Support

HP IMC User Behavior Auditor

Security Assertion Markup Language (SAML) Site Manager Setup

Installing the BlackBerry Enterprise Server Management Software on an administrator or remote computer

Use Enterprise SSO as the Credential Server for Protected Sites

CA Nimsoft Monitor. Probe Guide for IIS Server Monitoring. iis v1.5 series

How To - Implement Clientless Single Sign On Authentication in Single Active Directory Domain Controller Environment

LifeSize Control Installation Guide

Tip and Technique on creating adhoc reports in IBM Cognos Controller

Using LDAP Authentication in a PowerCenter Domain

CA Nimsoft Unified Management Portal

Using Microsoft Windows Authentication for Microsoft SQL Server Connections in Data Archive

Microsoft SQL Server 2008 R2 Express Edition with Advanced Services Installation Guide

HYPERION SYSTEM 9 N-TIER INSTALLATION GUIDE MASTER DATA MANAGEMENT RELEASE 9.2

Authorized Send Installation and Configuration Guide for imagerunner ADVANCE Machines Version 4.1

ADP Workforce Now Security Guide. Version 2.0-1

Xerox Multifunction Devices. Verify Device Settings via the Configuration Report

Request Manager Installation and Configuration Guide

FileMover 1.2. Copyright Notice. Trademarks. Patents

User Pass-Through Authentication in IBM Cognos 8 (SSO to data sources)

P R O V I S I O N I N G O R A C L E H Y P E R I O N F I N A N C I A L M A N A G E M E N T

WatchDox for Windows. User Guide. Version 3.9.5

How To Use Directcontrol With Netapp Filers And Directcontrol Together

Fairsail. Implementer. Fairsail to Active Directory Synchronization. Version 1.0 FS-PS-FSAD-IG R001.00

qliqdirect Active Directory Guide

Chapter 3 Authenticating Users

intertrax Suite resource MGR Web

Transcription:

Version 7.00 December 2008 DWS15V7.0E-01 LDAP Configuration Guide

2008 Xerox Corporation. All rights reserved. Xerox and the sphere of connectivity design and all product names mentioned in this publication are trademarks of Xerox Corporation in the United States and/or other counties. Other company trademarks are also acknowledged. Adaptec, the Adaptec logo, SCSlSelect, and EZ-SCSI are trademarks of Adaptec, Inc. Adobe PDFL - Adobe PDF Library Copyright 1987-2008 Adobe Systems Incorporated. Adobe, the Adobe logo, Acrobat, the Acrobat logo, Acrobat Reader, Distiller, Adobe PDF JobReady, and PostScript, and the PostScript logo are either registered trademarks or trademarks of Adobe Systems Incorporated in the United States and/or other countries. All instances of the name PostScript in the text are references to the PostScript language as defined by Adobe Systems Incorporated unless otherwise stated. The name PostScript also is used as a product trademark for Adobe Systems' implementation of the PostScript language interpreter, and other Adobe products. Copyright 1987-2008 Adobe Systems Incorporated and its licensors. All rights reserved. Autologic is a registered trademark of Autologic Information International, Inc. Compaq and QVision are registered United States Patent and Trademark Office, for Compaq Computer Corporation. DEC, DEC RAID, and Redundant Array of Independent Disks are registered trademarks of Digital Equipment Corporation. Dundas - This software contains material that is (c) 1997-2000 DUNDAS SOFTWARE LTD., all rights reserved. Imaging Technology provided under license by Accusoft Corporation. ImageGear 1997 by AccuSoft Corporation. All Rights Reserved. Intel and Pentium are registered trademarks of Intel Corporation. Novell and NetWare are registered trademarks of Novell, Inc. in the United States and other countries. Oracle is a registered trademark of Oracle Corporation Redwood City, California ScanFix Image Optimizer and ImagXpress are either registered marks or trademarks of Pegasus Imaging Corp. Copyright 1997-2008 Pegasus Imaging Corp. All rights reserved. SonyTM and Storage by SonyTM are trademarks of Sony. PANTONE and other Pantone, Inc. trademarks are the property of Pantone Inc. Preps is a registered trademark of Creo Inc. All rights reserved. Quark and QuarkXpress are registered trademarks of Quark, Inc. StorageView is a trademark of CMD Technology, Inc. TIFF is a registered trademark of Aldus Corporation. Windows, Windows XP, Windows Server 2003, and Internet Explorer are trademarks of Microsoft Corporation; Microsoft and MS-DOS are registered trademarks of Microsoft Corporation. Portions Copyright 2001 artofcode LLC. This software is based in part on the work of the Independent JPEG Group. Portions Copyright 2001 URW++. All Rights Reserved. This product includes software developed by the Apache Software Foundation. Copyright 1999-2008 The Apache Software Foundation. All rights reserved. This software is based in part on the work of Graeme W. Gill. Press-sense Ltd. 2002-2008. All rights reserved. Includes Adobe PDF Libraries and Adobe Normalizer technology The Graphics Interchange Format is the Copyright property of CompuServe Incorporated. GIFSM is a Service Mark property of CompuServe Incorporated. Portions contain an implementation of the LZW algorithm licensed under U.S. Patent 4,558,302. Parts of this software Copyright 2004-2006 Enterprise Distributed Technologies Ltd. All Rights Reserved. Parts of this software Copyright 1995-2003, The Cryptix Foundation Limited. All Rights Reserved. Parts of this software are a SSLv3/TLS implementation written by Eric Rescorla and licensed by Claymore Systems, Inc. All Rights Reserved. Parts of this software Copyright 2002, Lee David Painter and Contributors. Contributions made by Brett Smith, Richard Pernavas, Erwin Bolwidt. Parts of this software Copyright 1995-2005, Jean-loup Gailly and Mark Adler. All other product names and services mentioned in this publication are trademarks of their respective companies. They are used throughout this publication for the benefit of those companies, and are not intended to convey endorsement or other affiliation with the publication. Companies, names, and data used in examples herein are fictitious unless otherwise noted. Printed in the United States of America. Changes are periodically made to this document. Changes, technical inaccuracies, and typographic errors will be corrected in subsequent editions. Document Version: 1.0 (December 2008)

Table of Contents Overview 1 Prerequisites... 1 LDAP Workflow... 1 LDAP Configuration 3 Configuring LDAP for... 3 Configuring the Connection Settings... 3 Mapping LDAP - Attributes... 5 Configuring the Attributes...5 Configuring Privileges Parameters...6

LDAP Configuration Guide ii

1 Overview The FreeFlow Web -Services Lightweight Directory Access Protocol (LDAP) Adapter enables user authentication when logging in to the FreeFlow Web -Services application by way of a directory service. The LDAP Configuration Guide is designed for Print Providers who want to connect to an LDAP server. Integration of the LDAP system into is intended for corporate Print Buyer accounts, and supports multiple LDAP directories for different customers. Integration of the LDAP system into enables users who are managed in an LDAP directory to work with the system. The account is a copy of the domain user account and is updated each time the user logs into. The user is syncronized with the LDAP user including account status, required user details, and properties. The LDAP Adapter is a separately licensed product and must be purchased in addition to the FreeFlow Web -Services license. Microsoft Active Directory, Novell's NDS, and FreeFlow Web -Services Print Service Provider are currently supported by LDAP. Prerequisites Use of the FreeFlow Web -Services LDAP Adapter requires the following: Appropriate Directory User Account(s) should be set up and made available The application should be configured to perform LDAP authentication LDAP Workflow The following three steps describe the LDAP workflow: 1 The user enters the login URL that will provide external (LDAP) authentication: http://localhost/iway/?iid=xxx (where xxx is the authentication identifier as defined in the configuration file. 2 The user enters the domain login name and password in order to log in to the application; according to configuration parameters (refer to Configuring LDAP for on page 3), Web Services performs user authentication on the LDAP server. 3 If authentication is successful, the user will be logged in to the system, and one of the following events will be performed: If no corresponding user account exists, the system will create an account using retrieved domain user details and properties.

Overview If the corresponding user account already exists, the system will update the account using retrieved domain user details and properties. If the corresponding user account was disabled, the system will enable the account. If authentication fails, the user will not be logged in to the system and the appropriate error message will appear. In this case: If the domain user account has been disabled or deleted, but the corresponding Web Services user account still exists and is active, the system will disable the account. For all other error states (wrong password, technical error, etc.) no other manipulations on the corresponding existing user account will be performed. 2

2 LDAP Configuration In FreeFlow Web -Services, you configure the LDAP Adapter in the External Systems window. To access the External Systems window: 1 Login to the Print Service Provider. 2 Navigate to Settings -> Integrations -> External System; the External Systems window appears. 3 In the Systems list, select LDAP. Configuring LDAP for Configuration settings are divided into two sections: Configuring the Connection Settings Mapping LDAP - Attributes Configuring the Connection Settings Connection settings provide the parameters necessary to connect to the LDAP server. Figure 1: Connection Settings To configure connection settings, select parameters detailed in Table 1.

LDAP Configuration Table 1: Connection Settings Parameters (Sheet 1 of 2) Parameter Integration ID Service Description If you have a number of LDAP integrations, select one for your current work session. The directory service - Active Directory (Microsoft), or Novell. Example: <servertype>ad</servertype> Server DNS/IP Domain server name or server IP address where the active directory is located. Example: <authurl>10.10.10.1</authurl> Port Port number in use by to contact the domain (default 389). This port is employed to perform the query with the LDAP. If the LDAP server is external, this port must be opened within the firewall, in order to allow it to access the server and perform the query. Example: <ldapport>389</ldapport> Administrator User Name and Password Domain Defines Domain administrator credentials. Type in the user name and password of the administrator of the active directory. The login name and password of any user belonging to the Domain Admins group can be used. The local Domain Name System (DMS) name within the Company. This name is defined in the active directory. Example: <domain>mydomain</domain> Search Base Defines where to start the search inside the domain [DC=domain controller]. The LDAP syntax requires that you include the following parameters: DC=mydomain DC=com 4

Configuring LDAP for Table 1: Connection Settings Parameters (Sheet 2 of 2) Parameter Default Customer Description Defines the default account into which the authenticated LDAP user will be logged. Example: <customerid>2</customerid> Mapping LDAP - Attributes The attribute settings define the parameters that extracts from the LDAP server and how they are translated by. Mapping the attributes is divided into two sections: Configuring the Attributes Configuring Privileges Parameters Configuring the Attributes Attributes are the set of parameters - address, phone number, etc. - defined in the LDAP directory, and retrieved and updated in the user account. Figure 2 shows attribute parameters. Figure 2: Attribute Settings LDAP Configuration Guide 5

LDAP Configuration Configuring Privileges Parameters The LDAP Adapter integration enables synchronization between members of LDAP groups and privileges. Privileges parameters are divided into two headings: Member of: User group within the active directory. Privilege ID: Privilege role within. Figure 3: Privileges Parameters When mapping LDAP attributes to attributes, you must maintain a hierarchal order. A group with the highest privileges should be defined first, with all other definitions adhering to the order hierarchy. Testing the New Configurations To test the new configurations, login to http://localhost/iway/?iid=1. 1 is the Integration ID defined by you. Refer to Figure 1. Each buyer must login using this URL in order to receive authentication by the LDAP. When applying a skin to the customer, use the following URL: ip/branding/discoverit/?iid=1 6

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information