Expand my Community achievements bar.

SOLVED

Integrating with multiple LDAP directories AEM 6.1

Avatar

Level 3
Level 3
4/19/17 1:31:11 AM

Hi,

Could you please tell me process of integrating with multiple LDAP directories? In our case , we have two different domains - each has its own LDAP for user access. 
We need to integrate both LDAP directories to AEM. Currently we are using 6.1 version.

Thanks,
Hari

Views

1.4K

Replies

7
Sign in to like this content

Total Likes

Translate
Translate
1 Accepted Solution

Avatar

Correct answer by
Employee Advisor
Employee Advisor
4/20/17 2:32:26 PM

Hi,

Regarding your 2 LDAP directories: Are there collisions in the usernames, that means that a username appears in directory a AND in directory B? If that's not the case, you can just configure both as recommended by the others; AEM will then query first directory A and in case of a miss directory B.

If this isn't the case and there accounts with the same username in both directory A and B, I don't see any chance to make that work reliably. Because on the AEM side you don't operate with the full full qualified LDAP name, but typically only with the user ID. And if this ID is not unique, you will run into issues.

Jörg

View solution in original post

Views

803

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply
7 Replies

Avatar

Level 10
Level 10
4/19/17 9:52:03 AM

Here is a LDAP article that shows how to hook up Apache DS: 

https://helpx.adobe.com/experience-manager/using/configuring-aem6-apache-directory-service.html

You can try to hook up multiple services. I personally have never tried more than 1. 

Views

793

Replies

0
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Employee Advisor
Employee Advisor
4/19/17 12:49:54 PM

Hi,

you are talking about publish? And you you want to use a LDAP server depending on what site/domain the user visits?

Jörg

Views

797

Replies

0
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 3
Level 3
4/20/17 1:36:58 AM

smacdonald2008 wrote...

Here is a LDAP article that shows how to hook up Apache DS: 

https://helpx.adobe.com/experience-manager/using/configuring-aem6-apache-directory-service.html

You can try to hook up multiple services. I personally have never tried more than 1. 

 

Thank you for your response. I am looking for possibility of integrating with two different LDAP repositories to AEM as we have requirement to give access to two different domain users who are from two LDAP servers. 

Views

867

Replies

0
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 3
Level 3
4/20/17 1:41:27 AM

Hi Jorg,

Thank you for your response.

I am talking about Author access set up. We have users from two different domains. Each domain has its own LDAP repository. So requirement here is to give access to Author for both domain users who are from two LDAP servers. 

Thanks

Views

875

Replies

0
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Correct answer by
Employee Advisor
Employee Advisor
4/20/17 2:32:26 PM

Hi,

Regarding your 2 LDAP directories: Are there collisions in the usernames, that means that a username appears in directory a AND in directory B? If that's not the case, you can just configure both as recommended by the others; AEM will then query first directory A and in case of a miss directory B.

If this isn't the case and there accounts with the same username in both directory A and B, I don't see any chance to make that work reliably. Because on the AEM side you don't operate with the full full qualified LDAP name, but typically only with the user ID. And if this ID is not unique, you will run into issues.

Jörg

Views

804

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply