LDAP configuration

  1. Open the Identity and Access Management console.
  2. On the Realm Settings page, verify that the haa realm is selected from the top left drop-down.
  3. Click Clients and verify that haa-portal appears in the list.
  4. Click User Federation. On the Settings page:
    1. Add a User Federation provider of type ldap.
    2. For Vendor, select Active Directory.
    3. Populate the required fields with information provided by your system administrator.
  5. To use the domain user name in portal authentication, replace the value cn with sAMAccountName in the following fields:
    • Username LDAP attribute
    • RDN LDAP attribute
  6. Click Save.
  7. To see the user avatar in the HAA portal:
    1. Select User Federation > Ldap > LDAP Mappers.
    2. Click Create.
    3. In the Name field, type picture.
    4. From the Mapper Type drop-down list, select user-attribute-ldap-mapper.
    5. Click Save.
    6. Select picture. The Picture window appears.
    7. Complete the fields in the Picture window, then click Save.
      Notes:
      • The User Model Attribute field picture must be picture.

      • The default Active Directory attribute name that holds the user picture is thumbnailPhoto. If you have custom settings, or using a different LDAP server, you must provide the attribute name for thumbnail picture.

  8. Click Settings.
  9. Click Synchronise all users to import all Active Directory users into Identity and Access Management.
Parent topic: Configuring Identity and Access Management