{"id":2283,"date":"2013-10-04T19:22:04","date_gmt":"2013-10-05T01:22:04","guid":{"rendered":"http:\/\/allidm.com\/blog\/?p=2283"},"modified":"2013-10-04T19:22:04","modified_gmt":"2013-10-05T01:22:04","slug":"enable-ldap-pass-through-authentication-in-openidm","status":"publish","type":"post","link":"https:\/\/allidm.com\/blog\/enable-ldap-pass-through-authentication-in-openidm\/","title":{"rendered":"Enable LDAP Pass-through Authentication in OpenIDM"},"content":{"rendered":"<p>Out of the box OpenIDM uses the  local &#8220;openidm-admin&#8221; account to make REST calls. This user in the &#8220;openidm-admin&#8221; role, and has extended privileges. <\/p>\n<p>To use LDAP instead of a local account you must first create an LDAP group that contains OpenIDM administrators. Any member of this group will have admin rights. This sample uses the  group:<\/p>\n<p> cn=openidm-admins,ou=Groups,dc=example,dc=com. <\/p>\n<p>There are three files that you will need to enable pass through authentication. They are included here as attachments that you can download into your OpenIDM conf\/ and scripts\/ directories. Click on the link to download the attachment.<\/p>\n<p><a href=\"https:\/\/wikis.forgerock.org\/confluence\/display\/openidm\/Enable+LDAP+Pass-through+Authentication\" title=\"Enable LDAP Pass-through Authentication\" target=\"_blank\">Read more here&#8230;<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Out of the box OpenIDM uses the local &#8220;openidm-admin&#8221; account to make REST calls. This user in the &#8220;openidm-admin&#8221; role, and has extended privileges. To use LDAP instead of a local account you must first create an LDAP group that contains OpenIDM administrators. Any member of this group will have admin rights. This sample uses [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"nf_dc_page":"","_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[95,88,6,441,98],"tags":[414,1368,1358,703],"class_list":["post-2283","post","type-post","status-publish","format-standard","hentry","category-forgerock","category-identity-space","category-news","category-open-source-identity-management","category-openidm","tag-directory-server","tag-ldap","tag-openidm","tag-opensource-idm"],"jetpack_featured_media_url":"","jetpack_shortlink":"https:\/\/wp.me\/p25vfy-AP","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/posts\/2283","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/comments?post=2283"}],"version-history":[{"count":1,"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/posts\/2283\/revisions"}],"predecessor-version":[{"id":2284,"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/posts\/2283\/revisions\/2284"}],"wp:attachment":[{"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/media?parent=2283"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/categories?post=2283"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/tags?post=2283"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}