Setting properties for LDAP-based authentication

You can set properties for LDAP-based authentication.

About this task

To set properties for LDAP-based authentication:

Procedure

  1. Install the LDAP server (see the installation instructions from your LDAP server vendor).
  2. If a JAAS-compliant provider is used, create a JAAS configuration file with the following lines: 
    
LDAP
{
  // refer to the JAAS compliant service provider for the login 
     module details.
  <Class Name of the Login Module as specified by the Security 
  provider> required
debug=true;
};
  3. In your customer_overrides.properties file, specify the LDAP properties described in the following table.
    Property Description
    In the customer_overrides.properties file, specify:
    yfs.yfs.security.authenticator Develop a new class that implements the com.yantra.yfs.japi.util.YFSAuthenticator interface and set the new classname as value for this property.
    Note: The Sterling™ Order Management System Software provides a sample com.yantra.yfs.util.YFSLdapAuthenticator class that you can use for reference.
    yfs.yfs.security.ldap.factory If the default implementation is used, this property specifies the LDAP context factory classname as in your LDAP Server configuration. Set this property value to
    com.sun.jndi.ldap.LdapCtxFactory.
    yfs.yfs.security.ldap.url If the default implementation is used, this property specifies the URL used to access your LDAP Server. For example,
    yfs.security.ldap.url=ldap://MyServer:800.
    yfs.yfs.security.ldap.o If the default implementation is used, this property specifies the Sterling Order Management System Software organization in your LDAP Server configuration.
    yfs.yfs.security.ldap.ou If the default implementation is used, this property specifies the Sterling Order Management System Software organizational unit in your LDAP Server configuration.
    yfs.yfs.jaas.loginmodule If using JAAS, set this property value to LDAP.
    yfs.yfs.security.authenticator If using JASS, set this property value to com.yantra.interop.services.security.
    WebLogic startWLS startup file
    -Djava.security.auth.login.config If you are using JAAS and WebLogic, specify the full path to your JAAS configuration file.
    In the Applications Manager  
    Configure organizations, organization units, and users. All the users who need to access the Sterling Order Management System Software system must be set up under the LDAP server. All Sterling Order Management System Software users must belong to the same organizational unit.