LDAP

abhishek_1abhishek_1
in General Discussion

Hi All,

 

I have a few questions on LDAP configuration.

 

Can we configure LDAP on a per user basis?

For example:
UserX of CompanyX can authenticate w/ their own Active Directory Services (via LDAPS)
UserY of CompanyY can authenticate w/ their own LDAP service (via LDAPS)
So we don’t need to have dedicated Vertica databases per company wanting LDAP authentication? Rather we can share the same server instance (but have different schemas). Is this correct?

 

Thanks in advance !!

 

 

Comments

  • skeswaniskeswani - Select Field - Employee

    yes, its possible to do that.

     

    create two auth methods as show and assign/grant users as needed

     

     

    CREATE AUTHENTICATION LDAP2 METHOD 'ldap' HOST '0.0.0.0/0';
    ALTER AUTHENTICATION Ldap2 SET host='ldap://evilbill.verticacorp.com' , domain_prefix='verticacorp', basedn='OU=Vertica Users,dc=verticacorp,dc=com' 
    ALTER AUTHENTICATION Ldap2 enable;
    GRANT AUTHENTICATION LDAP2 to "jbond";


    CREATE AUTHENTICATION LDAP1 METHOD 'ldap' HOST '0.0.0.0/0';
    ALTER AUTHENTICATION Ldap1 SET host='ldap://evilbill.bank.com' , domain_prefix='bank', basedn='OU=Vertica Users,dc=bank,dc=com' 
    ALTER AUTHENTICATION Ldap1 enable;
    GRANT AUTHENTICATION LDAP1 to "mpenny";

Leave a Comment

BoldItalicStrikethroughOrdered listUnordered list
Format
SpoilerCodeQuote
Heading 2Heading 1
Emoji
:):D:(;):/:o:s:p:'(:|B):#:*<3o:)>:)
Url
Image
Align leftAlign centerAlign rightToggle HTML viewToggle full pageToggle lights
Drop image/file
Home General DiscussionComment As ...