Set up your own LDAP server

If you want to use your existing LDAP server, you can configure a connection to your LDAP server from IBM® Data Platform Manager.

About this task

If you configure a connection to your LDAP server, the user records are stored in your external LDAP server. Only the LDAP administrator can perform user management tasks, such as changing and resetting passwords.

Procedure

To configure a connection to your LDAP server:

  1. Click User Management.
  2. Click Set Up LDAP.
  3. Specify which LDAP authentication method you want to use:
    • If you want to restrict users to authenticating with only their distinguished name (DN) on the LDAP server, select without search.
    • If you want users to be able to authenticate with information other than their distinguished name, such as their email address, select with search.
  4. In the LDAP host field, enter the host name of the LDAP server:
    • Use the ldap:// protocol if you are connecting to an unsecured port on your LDAP server. For example, ldap://ibm.com.
    • Use the ldaps:// protocol if you are connecting to a secure port on your LDAP server. For example, ldaps://ibm.com.
  5. In the LDAP port field, enter the port number of the LDAP server.
  6. Specify the appropriate values based on LDAP configuration that you selected:
    LDAP authentication method Required parameters
    With search
    • Domain search user: User that can perform look ups in the LDAP server.
    • Domain search password: The password for this user.
    • Domain base: The point in the LDAP tree from which groups and users are searched.
    • User search field: The field that users can use to identify themselves, for example, cn, uid, or sAMAccountName.
    Without search
    • LDAP prefix: The prefix for your distinguished names, for example, 'uid=' or 'cn=').
    • LDAP suffix: The suffix for your distinguished names, for example, 'ou=users,dc=ibm,dc=com'.
  7. Select Auto-Signup to automatically approve all LDAP user sign up requests.
    Important: If you exceed the number of users that the default license entitles you to, you must purchase additional licenses for IBM Watson™ Studio Local.
  8. To verify that your LDAP connection works, type an existing LDAP user in the Username for testing and Password for testing fields. Then, click the Test LDAP button.
  9. Click Set up LDAP.
    If the LDAP configuration succeeds, IBM Data Platform Manager will not display the password field when you sign up a new user.