Configuring AREA LDAP group search
In releases previous to BMC Remedy AR System 7.0, external authentication required that every LDAP group to which a user belonged have a matching AR System group. If a user belonged to an LDAP group without a matching AR System group, external authentication failed. Hence, administrators had to create an AR System group for each LDAP group, and BMC Remedy AR System searched for groups at only one level in the defined base group. Now, you can map LDAP groups to AR System groups and ignore excess LDAP groups.
Mapping LDAP groups to AR System groups
This section explains how to map LDAP groups to AR System groups.
To map LDAP groups to BMC Remedy AR System groups
- Open the AR System Administration: Server Information form, and click the EA tab.
Click in the Group Mapping table to add a row, and enter the names of the LDAP and BMC Remedy AR System groups to map. Enter only one group name in each column.
LDAP Group Mapping table on EA tab
(Click the image to expand it.)
- Click Apply and OK.
Ignoring excess LDAP groups
Formerly, a user was authenticated only when each LDAP group to which the user belonged matched an AR System group. Now, you can configure BMC Remedy AR System to authenticate a user when any single LDAP group to which the user belongs matches an AR System group. You do this by specifying that BMC Remedy AR System ignore excess LDAP groups.
To ignore excess groups
- Open the AR System Administration: Server Information form, and click the EA tab.
- In the Group Mapping box, select the Ignore Excess Groups check box.
- Click Apply and OK.