Lightweight Directory Access Protocol (LDAP) is one of the most popular architectures for enterprise directories. By centralizing all user management in an LDAP directory, applications across the enterprise can share the same user database, and administrators do not need to duplicate user accounts in every application.
This chapter shows how JasperReports Server can be configured to perform external authentication with LDAP. As part of the authentication process, JasperReports Server also synchronizes the external user information, such as roles and organization ID, between LDAP and the JasperReports Server internal database.
LDAP authentication does not provide single sign-on (SSO) functionality. You must implement additional mechanisms and configure their use within JasperReports Server to enable SSO with LDAP, the details of which are beyond the scope of this guide. For more information, see Advanced Topics.
This chapter assumes you are familiar with LDAP servers and the structure of the data they contain, in particular the format of distinguished names (DNs) and relative distinguished names (RDNs) that create structure and identify entries in LDAP. For more information about LDAP in Spring Security, see the LDAP sample in the Spring Security reference documentation for 3.2.x at
http://docs.spring.io/spring-security/site/docs/3.2.5.RELEASE/reference/htmlsingle/.
This chapter contains the following sections:
Recommended Comments
There are no comments to display.