...
- A service defines the target UDMG Server and the supported authentication mechanism or provider.
- A provider define defines the type and the actual configuration for the related identity provider, for example the address of the LDAP server and the needed entity mapping.
...
| Name | Description |
|---|---|
| local | Standard UDMG Server authentication, usernames and passwords are stored in the database. |
| saml | SAML 2.0 Provider |
| Google OAuth2 Provider | |
| ldap | LDAP Server |
| oidc | Standard OpenID Provider |
| oauth | Standard OAuth2 Provider |
...
| Code Block | ||
|---|---|---|
| ||
[service.ldap] protocol = "http" policy = "failover" [service.ldap.credential] username = "ldap_sync" password = "ldap_password" [[service.ldap.targets]] hostname = "lb" port = 8080 [service.ldap.auth.ldap] file = "udmg-ldap-config.json" |
The details of the LDAP server are defined in the JSON file.
User Provisioning
In case of successful authentication on the LDAP, the UDMG user is created with default read Read permission in the internal UDMG database if it does not exist. Otherwise the user credentials are updated in the database to allow for authentication on the REST and CLI interfaces.
...