LDAP Authentication Configuration
Here are the steps for configuring LDAP authentication with InterSystems IRIS:
First, on the LDAP Server extend the database schema. Add user attributes to contain InterSystems IRIS user properties. See the image below for the list of user attributes that InterSystems IRIS retrieves from the LDAP server.
Second, complete the following steps in InterSystems IRIS:
-
Enable LDAP Authentication for the system. Click Allow LDAP Authentication on the Authentications Options/Web Session Options page (click [Home] > [System Administration] > {Security] > [System Security] > [Authentication/Web Session Options]) of the portal.
-
Configure InterSystems IRIS for its interactions with LDAP. Open the LDAP Configurations page (click [Home] > [System Administration] > [Security] > [System Security] > [LDAP Configurations] ) of the portal.
The properties on the top half of the page specify the LDAP access credentials for InterSystems IRIS. The properties on the bottom half of the page specify the LDAP user attributes that InterSystems IRIS accesses. These attributes represent the InterSystems IRIS user account properties.
-
Enable LDAP Authentication for the relevant services. For services associated with non web connection tools click the name of the application on the Services page (click [Home] > [System Administration] > [Security] > [Services]) of the portal. Then click the relevant service. For web applications click the name of the application on the Web Applications page (click [Home] > [System Administration] > [Security] > [Web Applications]) of the portal.
