Each tenant must be associated with at least one identity store. Identity stores can be OpenLDAP or Active Directory. Use of Native Active Directory is also supported for the default tenant.

Procedure

  1. Click the Add icon (Add).
  2. Enter a name in the Name text box.
  3. Select the type of identity store from the Type drop-down menu.
  4. Enter the URL for the identity store in the URL text box.

    For example, ldap://ldap.mycompany.com:389 .

  5. Enter the domain for the identity store in the Domain text box.
  6. (Optional) : Enter the domain alias in the Domain Alias text box.

    The alias allows users to log in by using userid@domain-alias rather than userid@identity-store-domain as a user name.

  7. Enter the Distinguished Name for the login user in the Login User DN text box.

    Use the display format of the user name, which can include spaces and is not required to be identical to the user ID.

    For example, cn=Demo Admin,ou=demo,dc=dev,dc=mycompany,dc=com.

  8. Enter the password for the identity store login user in the Password text box.
  9. Enter the group search base Distinguished Name in the Group Search Base DN text box.

    For example, ou=demo,dc=dev,dc=mycompany,dc=com.

  10. (Optional) : Enter the user search base Distinguished Name in the User Search Base DN text box.

    For example, ou=demo,dc=dev,dc=mycompany,dc=com.

  11. Click Test Connection.

    Check that the connection is working.

  12. Click Add.
  13. (Optional) : Repeat 1 to 12 to configure additional identity stores.
  14. Click Next.

Results

Your new identity store is saved and associated with the tenant. You are directed to the Administrators tab for the next step in the process.