Setting up LDAP Authentication for the SSP
When all of your domain users can use the Self Service Portal, you may want to avoid duplicating user accounts in Alloy Navigator. With LDAP authentication enabled for the Self Service Portal you do not need to create SSP Customer accounts for domain users.
You set up LDAP authentication for the Self Service Portal in the Self Service Portal > LDAP Authentication section.
NOTE: To be able to enable domain users to sign in to the SSP without accounts, you must first create a corresponding Domain Credentials record and provide connection parameters. For details, see Managing domain credentials.
To configure user authentication:
-
The Self Service Portal > SSO Authentication section displays Domain Credentials records created under Services > Active Directory Integration > Domains Credentials. To allow users from a specific domain or directory service container to sign in to the Self Service Portal without Alloy Navigator accounts, select the check box for the corresponding domain or container.
-
Under For new user, specify how to create Person records for newly created domain users as follows:
-
In the Create new Person using Action field, click the ellipsis button and select one of standard actions for auto-creating Person records of domain users in the Select Action window. When the action is chosen, the field label becomes hyperlinked and you can open the corresponding Action record by clicking this link.
NOTE: You manage Service Actions for a particular object class in Workflow and Business Logic > [Module] > [Object Class] > Workflow > Actions > Service Actions section. For details, see Configuring Service Actions.