×
 
 
  •  
$helper.renderConfluenceMacro('{bmc-global-announcement:$space.key}')

Unsupported content

 

This version of the documentation is no longer supported. However, the documentation is available for your convenience. You will not be able to leave comments.
BMC Decision Support for Server Automation 8.6 ... Installing Configuring after installation Administering security Implementing authentication LDAP authentication Configuring LDAP authentication

Configuring the Authentication Server to refresh LDAP session credentials

BMC Decision Support for Server Automation relies on the ability to refresh session credentials when executing scheduled jobs. This feature allows you to run scheduled reports without requiring you to authenticate again.

When refreshing session credentials, the Authentication Service validates the user account on the directory server. The account must exist and be enabled for logging on.

User account attributes that indicate whether an account has been disabled or locked differ across directory servers. The Authentication Service relies on the user validation filters to specify how to validate account attributes. If a custom user validation filter is not defined, the Authentication Service can only verify that the user account has not been deleted.

To refresh session credentials, the Authentication Service might need to authenticate itself to the directory server. If authentication is required, you must define a default LDAP user name and password.

To configure an Authentication Server to refresh LDAP session credentials

  1. On the reports server, start the Application Server Administration console (the blasadmin utility) as follows:

    • (Windows) Navigate to the BDSSAInstallationDirectory\bin directory and enter the following command: blasadmin.

    • (UNIX) Navigate to the BDSSAInstallationDirectory/br directory and enter the following command: blasadmin.  

  2. Provide a default LDAP user name and password that can be used to log on when refreshing session credentials by entering the following commands:

    set Ldap DefaultUser <name>
    set Ldap DefaultPassword <password>

  3. To validate that users can log on by using LDAP, enter the following command:

    set AuthServer LDAPUserValidationFilter <filter>


    <filter> is a validation filter used to validate users for a particular LDAP schema. For more information about user validation filters and examples of typical filters for common LDAP directories, see Using user validation filters.

  4. Restart the Authentication Service.

Was this page helpful? Yes No Submitting... Thank you
Last modified by Sulekha Gulati on Aug 04, 2014
refreshing session_credentials report_administration ldap_authentication

Comments

Log in or register to comment.

Configuring LDAP authentication
Using user validation filters
© Copyright 2024 BMC Software, Inc.
Legal notices

Powered by Atlassian Confluence and Scroll Viewport

© Copyright 2005-2024 BMC Software, Inc. Use of this site signifies your acceptance of BMC’s Terms of Use . BMC, the BMC logo, and other BMC marks are assets of BMC Software, Inc. These trademarks are registered and may be registered in the U.S. and in other countries.