Each tenant must be associated with at least one identity store. Identity stores can be OpenLDAP or Active Directory. Use of Native Active Directory is also supported for the default tenant.

Procedure

  1. Click the Add icon (Add).
  2. Enter a name in the Name text box.
  3. Select the type of identity store from the Type drop-down menu.
  4. Type the URL for the identity store in the URL text box.

    For example, ldap://ldap.mycompany.com:389 .

  5. Type the domain for the identity store in the Domain text box.
  6. (Optional) : Type the domain alias in the Domain Alias text box.

    The alias allows users to log in by using userid@domain-alias rather than userid@identity-store-domain as a user name.

  7. Type the Distinguished Name for the login user in the Login User DN text box.

    Use the display format of the user name, which can include spaces and is not required to be identical to the user ID.

    For example, cn=Demo Admin,ou=demo,dc=dev,dc=mycompany,dc=com.

  8. Type the password for the identity store login user in the Password text box.
  9. Type the group search base Distinguished Name in the Group Search Base DN text box.

    For example, ou=demo,dc=dev,dc=mycompany,dc=com.

  10. (Optional) : Type the user search base Distinguished Name in the User Search Base DN text box.

    For example, ou=demo,dc=dev,dc=mycompany,dc=com.

  11. Click Test Connection.

    Check that the connection is working.

  12. Click Add.
  13. (Optional) : Repeat 1 to 12 to configure additional identity stores.
  14. Click Next.

Results

Your new identity store is saved and associated with the tenant. You are directed to the Administrators tab for the next step in the process.