Layer7 API Management

I am trying to setup LDAP Authentication on the CA API Developer Portal v4.2.  The Setup is asking for a Bind Distinguished Name / Bind Password.  What value are expected for these two attributes?  Where would I find the information?

The LDAP setup on the CA API Gateway does NOT require these attributed to be populated and that connection works without fail.

Any help would be greatly appreciated.

Hi Rick,

The BIND DN would be the bind definition of the user you use to setup the LDAP/AD integration, for example:

cn=rick,ou=admins,dc=fedex,dc=com

And the BIND password would be that user password.

Do keep in mind that for Portal 4.2 integration with LDAP/AD one would need to have the attribute mapping configured as well.

Hope this helps,

Regards,

Amit.

Hi Rick,

Adding to what I suggested, regarding the attributes mapping there are two scenarios: 

1. user is not a member of any group 
2. user is member of a group 

for 1. user is not a member of any group 
=============================== 

on ldap the user account should have some value for all the following attributes 
1. Email 
2.givenName 
3.sn 
4. o = one of org's which is on your portal 
5. title = developer 

on portal 
======= 
6.under role mapping for developer , in the box type developer 

so while authenticating, the user title from ldap is pulled as developer and this developer is mapped as developer role according to above step 6 

So in the portal config menu what ever we type in the box on the right hand side is mapped with role which is on the left hand side ( under role mappings ) 

for 2. user is member of a group 
========================= 

in portal config menu for role add "memberOf" 
and for example for developer role, in the box against the role add the Distinguished Name value of the group to which the user is a member 

Hope this helps,

Regards,

Amit.