LDAP Authentication

This authentication is used for full LDAP integration. It is set by configuring the security type to ldap in the application.yaml file inside the $MQ_HOME/config folder.

• Users with security type = LDAP must exist in the configured LDAP server. Password is not captured as part of the user profile.
• Users with security type = LDAP are validated against LDAP during user creation and update. When the user is created or modified explicitly using the TIBCO MDM UI, create user web service, or import metadata, no information is extracted from the LDAP server. However, the user must exist in LDAP. The profile information provided by the user is saved.
• User is validated against LDAP during user modify only if the security type is changed from PASSWORD to LDAP.
• Password supplied during login is validated against LDAP during login.
• No automated user creation or update in LDAP login or Single Sign-on is supported.