External User Authentication

EMS can be configured to authenticate users stored in an external directory server, such as an LDAP server.

The parameter user_auth in tibemsd.conf guides the EMS server when authenticating users. When a user attempts to authenticate to the EMS server, this parameter specifies the source of authentication information. This parameter can have one or more of the following values (separated by comma characters):

  • local—obtain user authentication information from the local EMS server user configuration.
  • ldap—obtain user authentication information from an LDAP directory server (see the LDAP-specific configuration parameters).
  • jaas—obtain user authentication information from a custom authentication module (see Extensible Authentication).

Each time a user attempts to authenticate, the server seeks corresponding authentication information from each of the specified locations in the order that this parameter specifies. The EMS server accepts successful authentication using any of the specified sources.