![]() |
Copyright © TIBCO Software Inc. All Rights Reserved |
The user authentication sources listed on the User Authentication Configuration page are ordered by priority. At run time, when an external user is to be authenticated by the system it will be authenticated against the source in the order from the top to bottom. However, when you manage the users on the BusinessConnect > User Management > Users page, only the source at the top is the target source of your management activities.
1. Click Add to add an authentication source.
Table 18 LDAP Server Settings
• Base DN: dc=na,dc=tibco,dc=com
• User Search Filter: objectclass=person It is good practice to use the value of cn for all the supported LDAP servers. Note: Different LDAP servers have different User to Group or Role membership attributes. For example, specify the value of memberOf for the Open LDAP server or Microsoft Active Directory LDAP server, nsrolsedn for the Sun ONE LDAP server, and ibm-allGroups for the IBM Tivoli Directory Server. The server certificate used for secure LDAP communication. Select one of the certificates that was configured under System Settings > Certificate Store > Server Identities & Certificates. Click Test Connection to verify whether the connection works.
See LDAP Configuration for more information about the LDAP Role BaseDN Attribute.The added and configured authentication sources are displayed in the Source Alias list. The Priority column indicates the order in which TIBCO BusinessConnect will use the sources to authenticate external users. For example, if you add BC Database and then LDAP as authentication sources, BCDB (the BC Database alias) will be listed first in the Source Alias list with a Priority of 1; LDAP will be listed second in the Source Alias list with a Priority of 2. When authenticating external users, TIBCO BusinessConnect will use BCDB, the source with a Priority of 1, first. If authentication fails with that source, TIBCO BusinessConnect will retry the authentication using LDAP, the source with a Priority of 2.You can use Move Up and Move Down in User Authentication Configuration to adjust the priority of an authentication source.Click Remove to remove the configured LDAP server or a BC Database.
![]() |
Copyright © TIBCO Software Inc. All Rights Reserved |