LDAP user authentication

IBM OpenPages® with Watson™ supports the use of an LDAP (Lightweight Directory Access Protocol) authentication server to control user access.

To use LDAP user authentication, you integrate OpenPages with Watson with an LDAP data source.

Only one login module can be active at the same time. OpenPages with Watson supports a single namespace. All users must be authenticated through the same data source. Multiple authentication modules can be used in a multi-forested environment.

Users that are created or imported into OpenPages with Watson must also be defined in the LDAP authentication server. The administrator managing the OpenPages with Watson users is responsible for maintaining the correlation between the OpenPages with Watson user list and the external LDAP data source. If a user is disabled on the OpenPages with Watson server, the user must be manually disabled on the LDAP Directory server.

Note: If an LDAP Directory server is being used for user authentication, the Change Password option is disabled in OpenPages with Watson. When an LDAP server is used, passwords are not maintained in OpenPages with Watson. The password must be changed in the LDAP server.

You can also configure OpenPages with Watson to use an external LDAP user authentication server over SSL. For more information, see Modifying the LDAP configuration file for LDAP over TLS.