Login
Contents x
Authentication in IAP Using LDAP
  • 07 Sep 2022
  • Dark
    Light
  • PDF
Contents

Authentication in IAP Using LDAP

  • Updated on 07 Sep 2022
  • Dark
    Light
  • PDF
Article Summary

Authentication

The following diagram shows the overall authentication flow in IAP using LDAP.

Figure 1: Authentication Flow Using LDAP
01-authenticationFlowUsingLDAP

  1. User provides username and password.

  2. LDAP server in AAA platform authenticates users and returns one of the following:

    • Reject: IAP displays "Invalid credentials."
    • Access-Accept: IAP allows user to login.
    • Challenge: IAP displays "Generate token and retry."

  3. AAA Platform also returns a vendor specific attribute ( Type 2 per RFC 2865, 5.6). For example:

    • Vendor ID = 47688 (Itential)
    • Name = Itential-user-Group
    • Number = 1
    • Value = User group of the user obtained from LDAP.
What's Next
Privacy Policy
Cookie Policy
Terms of Use
EULA
Copyright © 2022 Itential for Developers
Change password!
Changing your password will log you out immediately. Use the new password to log back in.
Change profile
Success!
First name must have atleast 2 characters. Numbers and special characters are not allowed.
Last name must have atleast 1 characters. Numbers and special characters are not allowed.
Enter a valid email
Enter a valid password
Your profile has been successfully updated.
Logout