cancel
Showing results for 
Search instead for 
Did you mean: 

Portal login via multiple LDAP

Former Member
0 Kudos
60

Hi Guys,

We have integrated two LDAP (LDP1 and LDP2) in Portal as UME source. They are working fine user are able to login.

Now our requirement is... we have same id exist in both the LDAP for some of the users and we cann't change them to make unique.

Can we do some modification to give user flexbility to login by putting their ID with prefix of LDAP ?

Exp :- LDP1 / testuser

LDP2 / testuser

Please suggest.

Regards

Amit Saini

Accepted Solutions (1)

Accepted Solutions (1)

former_member201257
Active Contributor
0 Kudos

Interesting requirement.

Would LDP1 / testuser and LDP2 / testuser have the same portal roles or different ?

There are two pieces here - authentication and authorization - both should be considered.

I have not done this myself but you can try to include a custom attribute in each of your active directories and authenticate the user against that custom attribute.

I had a customization in the past to use email address to authenticate a user and then use the userid for the authorizations.

I had done some thing along the lines of the following article to achieve this:

http://wiki.sdn.sap.com/wiki/display/EP/PortalLoginwithemailaddress

Hope that gives you some insight.

Thanks,

Shanti

Former Member
0 Kudos

Hi Shanti,

Thanks for reply...

LDP1 / testuser and LDP2 / testuser may or may not have the same roles.

For authentication and authorization I have already done the changes as email address to authenticate and authorization. users from the both the LDAP are able to login but now my SPNEGO fails for the users with same login ID.

So I thought If some how i am able to give access with AD prefix (LDP1 / testuser and LDP2 / testuser ) SPNEGO may work.

Or is there any way that SPNEGO works on Email ID ?? while users login to system via his/her login ID.

Regards

Amit Saini

Answers (0)