Configuring the Portal for Authentication Against LDAP Directory 

Prerequisites

You have administrator rights in the portal.

You have set up a corporate LDAP directory in your system landscape that contains the user data for portal users.

If you are using Microsoft Active Directory Server as your corporate LDAP directory, portals users can only be authenticated against a single domain in the domain tree.

 

Procedure

...

      1.      Start the configuration tool by choosing System Configuration ® User Management Configuration.

      2.      Choose the Authentication Server tab.

      3.      If you wish to specify the same repository as you entered in the Directory Server tab, choose Copy and just reenter the password. Otherwise enter data in the fields as follows:

Field Name

Field Data

User Authentication Type

LDAP: Users are authenticated against the corporate LDAP directory as they log on to the portal.

LDAP Server Type

Type of LDAP directory server.

For information on the Other option, see SAP Note 482051.

LDAP Server

Host on which the directory server is located.

Server Port

Port of the LDAP directory server.

User

Distinguished name (DN) of user that is used to connect (bind) to the LDAP directory server.

This user should have read and search permissions for the users and groups branch of the corporate LDAP directory.

Password

Password of the user specified above.

 

      4.      If you wish to set up a secure connection to the corporate LDAP directory, select SSL Connection. For more information on setting up a secure connection, see Secure Connections to Corporate and Portal LDAP Directories.

      5.      If you wish to configure the portal to use Form-Based Logon, select Form Login.

      6.      To test the connection to the user data repository, choose Test Connection and enter the user ID and password of a user account that you know exists in the data repository.

      7.      When you have filled all the fields, choose Apply.

You need to restart the portal Web server (Microsoft Internet Information Server) and the Java servlet engine for your changes to take effect. However, do not restart these until you have completed all the tabs of the configuration tool.

 

Result

The Enterprise Portal authenticates users against the corporate LDAP directory when they log on to the portal.