Spotfire Statistics Services configuration example - restrict access by group membership in LDAP

Spotfire Statistics Services configuration example - restrict access by group membership in LDAP

book

Article ID: KB0084160

calendar_today

Updated On:

Products Versions
Spotfire Statistics Services All Versions

Description


See the following to configure.

Issue/Introduction

This is an example of an LDAP configuration that will only let users log in if they are members of the LDAP group specified in the ldap.customSearchFilter (CN\=groupcn,OU\=Gothenburg,OU\=Sweden,DC\=emea,DC\=company,DC\=com)

Environment

TIBCO Spotfire Statistics Services ( TSSS )

Resolution

SplusServer/conf/spserver.properties - set authentication.required=true

Content of SplusServer/conf/ldap.properties:

=================================================
ldap.protocol=ldap
activeDirectory.enabled=false
ldap.enabled=true
ldap.port=389

ldap.manager.pass=passw0rd
ldap.manager.anonymous=false
ldap.manager.cn=company\\username

ldap.host=company.tibco.com
ldap.domain=tibco.com
ldap.accountNameAttr=sAMAccountName
ldap.groupMemberAttr=sAMAccountName
ldap.basedn=OU\=Domain Users,DC\=company,DC\=tibco,DC\=com
ldap.path=
ldap.searchBase=OU\=Domain Users,DC\=company,DC\=tibco,DC\=com
ldap.searchSubTree=true
ldap.groupRoleAttr=OU

ldap.customSearchFilter=(&(memberOf=CN\=groupcn,OU\=Gothenburg,OU\=Sweden,DC\=emea,DC\=company,DC\=com)(sAMAccountName={0}))

ldap.group0=
ldap.group1=
ldap.group2=
ldap.group3=
ldap.group4=
ldap.group5=
ldap.group6=
ldap.group7=
ldap.group8=
ldap.group9=
=================================================

Powered by Wolken Software