Note: Before you configure a connection to your external directory services, follow the instructions to Configure a Connection to the Configuration Server Directory Service.
You can administer LDAP policies through the HPCA Console by assigning Services to Directory Service objects.
Before you can do this, however, you must configure connections to your external directory services. The following types of external directory services are supported:
If you are using SSL on your LDAP server, then you should use the LDAPS (Secure) type of connection.
Each external LDAP directory service may be used for any combination of:
For example, suppose that you have two directories. One contains all user accounts, and the other is specifically for policy. You want to authenticate against the user account directory. In this case, you should create two directory services with their connections defined differently:
Selecting Used for Authentication enables users to log in to the HPCA Console using their external LDAP directory account for this directory service.
This configuration will enable you to sign in using the first directory service, and configure policy using the second directory service.
Note: Note that if a directory source is configured with Used for Authentication, but Use Service Account is not selected, users must sign in using their external LDAP directory credentials. If Use Service Account is selected, users can sign in using their local HPCA Console user name and password.