WebOffice author > File Menu > Application Category > Application Configuration > Common > User Management

Using Authentication Type LDAP it is possible to use LDAP user accounts for checking the user login.

Recommended scenarios for this Authentication type are:

•	Customer wants to use the existing user accounts of the Microsoft Active Directory or

•	Customer wants to use the existing user accounts of the Novell eDirectory or

•	Customer wants to use the existing user accounts of the Sun Directory Server or

•	Customer wants to use the existing user accounts of the Open LDAP system.

Authentication type LDAP configuration

Using a URL for a secure connection the application will be referenced via normal HTTP but sensible data like login data etc. will be transferred via HTTPS.

If you want to provide a guest user account without login dialog, you can configure a user name i.e guest. If the user guest has access rights on a project, the project can be started with a user parameter without login dialog.

Note: The authentication type LDAP uses the WebOffice login dialog and users and passwords are managed by the WebOffice UM Repository and additionally synced via LDAP / AD during the login process. A general comparison of the common authentication methods in WebOffice 10.2 SP3 can be found in chapter Overview of authentication methods.

Property

Description

Use domain?

Specifies whether authentication module takes the domain string into consideration (Yes) or not (No) when logging in (login (user name) is e.g.: VIENNA\Novak or VIENNA/Novak):

•	Yes: VIENNA\Novak or VIENNA/Novak will be used

•	No: Novak will be used

Note: If using domain string (Yes) then the user login names in User Management database must be saved with the domain strings included!

Use user roles only?

Use role based information from authentication system. If Yes, no storage and maintenance of user objects in the User Management database is necessary then.

URL for secure connection

Secure Connection configuration. Use this for providing encrypted log in.

The URL for secure connection must look like https://<server>:<port>.

Prerequisite for use of a secure connection is:

•	When working with a web server (IIS, Apache): a valid and installed SSL certificate on web server,

•	When working with Tomcat (without web server): a valid and installed SSL certificate on JDK as well as a correct Tomcat (servlet engine) configuration (SSL port, connector).

Guest user (anonymous)

Provide the login of the user who is allowed to start a project session without login dialog (Call with a "user" parameter).

For example: http://<myserver>:<port>/WebOffice/synserver?project=MyProject&user=guest

Authentication type LDAP configuration

Note: With WebOffice 10.2 SP3 backup LDAP Servers are supported. Just add a second LDAP configuration node. Connection to first defined LDAP served is tried first (top-down).