Skip to main content

LDAP Authentication Configuration

Here are the steps for configuring LDAP authentication with InterSystems IRIS:

First, on the LDAP Server extend the database schema. Add user attributes to contain InterSystems IRIS user properties. See the image below for the list of user attributes that InterSystems IRIS retrieves from the LDAP server.

Second, complete the following steps in InterSystems IRIS:

  1. Enable LDAP Authentication for the system. Click Allow LDAP Authentication on the Authentications Options/Web Session Options page (click [Home] > [System Administration] > {Security] > [System Security] > [Authentication/Web Session Options]) of the portal.

    Allow LDAP authentication setting highlighted with red box

  2. Configure InterSystems IRIS for its interactions with LDAP. Open the LDAP Configurations page (click [Home] > [System Administration] > [Security] > [System Security] > [LDAP Configurations] ) of the portal.

    Red bracket and text box identifying the settings related to LDAP access credentials

    The properties on the top half of the page specify the LDAP access credentials for InterSystems IRIS. The properties on the bottom half of the page specify the LDAP user attributes that InterSystems IRIS accesses. These attributes represent the InterSystems IRIS user account properties.

  3. Enable LDAP Authentication for the relevant services. For services associated with non web connection tools click the name of the application on the Services page (click [Home] > [System Administration] > [Security] > [Services]) of the portal. Then click the relevant service. For web applications click the name of the application on the Web Applications page (click [Home] > [System Administration] > [Security] > [Web Applications]) of the portal.

Note:

For configuration information, see Overview of Setting Up LDAP Authentication; for detailed information about LDAP properties, see LDAP Configuration Fields.

FeedbackOpens in a new window