Lightweight Directory Access Protocol (LDAP) Authentication allows user information to be maintained in one centralized location. User credentials can be shared between the LDAP Directory and the Centricity2 website User Management Systems.
LDAP authenticates user names and passwords using your LDAP Directory rather than your Centricity2 website. If your LDAP administrator changes the password for a user within your LDAP Directory, that user’s password is automatically updated in your Centricity2 website. LDAP can automatically create user accounts in your Centricty2 website for any users entered in your LDAP Directory. When users first sign in to an LDAP enabled Centricity2 website with a user name and password combination that the website does not recognize, LDAP allows the website to attempt to authenticate with user credentials in your LDAP Directory. If that authentication is successful, your Centricity2 website creates a user account for the user, allowing that user access to the site as a registered user. LDAP allows you to create cross-references between groups that you have created in your Cenricity2 website and groups that exist in your LDAP Directory. Users assigned to groups in your LDAP Directory are assigned to the cross-referenced Centricity2 groups each time the LDAP authenticated users sign in to Centricity2. LDAP authenticated users are added or removed from Centricity2 groups as determined by the LDAP to Centricity2 group cross references.
The primary benefit of LDAP Authentication is to have a single source repository of user information, your LDAP Directory, for all of your LDAP enabled applications. You maintain user information for all of your LDAP enabled applications at one location, your LDAP Directory. All LDAP enabled applications use the same user name and password.
LDAP Servers Supported by Centricity2:
- Novell® eDirectory™
- Microsoft® Active directory®
- OpenLDAP™ (an open source directory)
