Products | Versions |
---|---|
Spotfire Server | All Versions |
In TIBCO Spotfire Server 6.0 and later, there is a feature in the LDAP user directory and group synchronization to only import users into Spotfire if they are present in the groups that are being synchronized. This can be accomplished with the following setting in your LDAP configuration:
This exact feature is not present in Spotfire 5.5 and lower but the same behavior can be accomplished by updating the 'user search filter' as described in this article.
The LDAP configuration is defined with the 'context name's (i.e., the containers where Spotfire will look for users) and the user search filter (i.e., an LDAP query which are the criteria Spotfire uses to determine if the objects found within the 'context names' should be imported as users). For example:
This means Spotfire will search all objects in the container 'OU=myUsers,DC=myDomain,DC=com' and will import all objects who have an 'objectClass' attribute equal to 'user'. Instead of importing ALL users found in the container, you may want to only import a subset of users who will have access to Spotfire and who are also a member of a particular group or groups.