Out of the box OpenIDM uses the local “openidm-admin” account to make REST calls. This user in the “openidm-admin” role, and has extended privileges.
To use LDAP instead of a local account you must first create an LDAP group that contains OpenIDM administrators. Any member of this group will have admin rights. This sample uses the group:
cn=openidm-admins,ou=Groups,dc=example,dc=com.
There are three files that you will need to enable pass through authentication. They are included here as attachments that you can download into your OpenIDM conf/ and scripts/ directories. Click on the link to download the attachment.