LDAP user authentication

IBM OpenPages® supports the use of an LDAP (Lightweight Directory Access Protocol) authentication server to control user access.

To use LDAP user authentication, you integrate OpenPages with an LDAP data source.

Only one login module can be active at the same time. OpenPages supports a single namespace. All users must be authenticated through the same data source. Multiple authentication modules can be used in a multi-forested environment.

Users that are created or imported into OpenPages must also be defined in the LDAP authentication server. The administrator managing the OpenPages users is responsible for maintaining the correlation between the OpenPages user list and the external LDAP data source. If a user is disabled on the OpenPages server, the user must be manually disabled on the LDAP Directory server.

Note: If an LDAP Directory server is being used for user authentication, the Change Password option is disabled in OpenPages. When an LDAP server is used, passwords are not maintained in OpenPages. The password must be changed in the LDAP server.

You can also configure OpenPages to use an external LDAP user authentication server over SSL. For more information, see Modifying the LDAP configuration file for LDAP over TLS.