LDAP Bind with LBI

Sort:
You are not authorized to post a reply.
Author
Messages
Roger French
Veteran Member
Posts: 545
Veteran Member
    Setting up the LDAP bind with LBI FS.
    Not using DSSO.
    Windows 2008
    Env = 9.0.1.9
    LBI v 9.0.4.x

    So, in setting up the Authentication Service, I choose LDAP and fill out the LDAP Bind parameters and credentials which I have. Under the "Administrative Role" what goes in that?

    Thank you,
    Roger
    Matthew Nye
    Veteran Member
    Posts: 514
    Veteran Member
      youll have to enter the full DN for the group that was set up to hold the LBI admin users. the binding user should be a member of that group as well as the LBI Users role.
      If any of my answers were helpful an endorsement on LinkedIn would be much appriciated! www.linkedin.com/pub/matthew-nye/1a/886/760/
      Roger French
      Veteran Member
      Posts: 545
      Veteran Member
        Hello Matt,

        What specifically goes in the section labeled "Adminstrative Role"... .is this an LBI Role such as "Administrators"? I already know how to do the bind to regular Lawson environment.
        Matthew Nye
        Veteran Member
        Posts: 514
        Veteran Member
          its just an LDAP group. It can be called anything, it just needs to be in youre search base. any users that need access to the Tools dashboard will need to be a member as well as your bind member.
          If any of my answers were helpful an endorsement on LinkedIn would be much appriciated! www.linkedin.com/pub/matthew-nye/1a/886/760/
          Roger French
          Veteran Member
          Posts: 545
          Veteran Member
            When you say "It can be called anything, it just needs to be in you're search base" I think what you mean is that the group already has to exist in your search base in LDAP. You don't create the group, it has to be already created, correct?
            Matthew Nye
            Veteran Member
            Posts: 514
            Veteran Member
              yes, if i understand the scenario correctly, that LDAP is your user repository, it also will be your group repository. so youll need, at a minimum, to set up an admin group and a user group. you have to add any users that need to to be able to login to LBI to the latter.
              If any of my answers were helpful an endorsement on LinkedIn would be much appriciated! www.linkedin.com/pub/matthew-nye/1a/886/760/
              You are not authorized to post a reply.