cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Showing results for 
Search instead for 
Did you mean: 

Need ability to authenticate Integrity users from multiple top level LDAP user domains

Need ability to authenticate Integrity users from multiple top level LDAP user domains

This would apply for

Active Directory

Novell eDirectory

others ...

6 Comments
Aquamarine

This would also be great if in LDAP System is used like DirX which allows to have a Forest of LDAP Domains (per location) which are combined to one general for the company (which can't be used for placing requests).

 

Gravel
Status changed to: New Idea

Have you considered using LDAP-referrals ?

If you're using it & faced any shortcoming, can you please describe the entire use for PTC ILM Security team to gather additional details ?

Gravel

I have some more information to share in this regards.

There are couple of scenarios for setting up authentication over multiple LDAP domains in ILM.

 

  1. Subdomains (child-level domains) in the same LDAP forest (i.e. top-level domain) – which is supported by PTC
    i.e. ldap.host.1=sub.domain.com
          ldap.host.2=anothersub.domain.com
    Refer supported article at : https://www.ptc.com/en/support/article?n=CS117076&language=en&posno=3&q=user.dn.2&ProductFamily=Inte...

  2. Domains across multiple LDAP forests (i.e. multiple top-level domain) – which is not supported by PTC.
    However, some customers have been using Microsoft Active Directory Application Mode (ADAM) to address their authentication requirements.
    Refer supported documentation article at : https://docs.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2003/cc738377(v=ws....

I believe, scenario # 2 mentioned above matches with the requirement described in Idea.

Regular Member

From ZF perspective this idea is outdated and it could be  closed.

 

Meanwhile we have a working multiple LDAP solution in place. This solution is based on the support article mentioned in the previous comment in scenario 1.

Gravel

@bklitzsch Thanks for the confirmation.

I'm now closing this idea.

Gravel
Status changed to: Alternate Solution