IBM Verify

IBM Verify

Join this online user group to communicate across Security product users and IBM experts by sharing advice and best practices with peers and staying up to date regarding product enhancements.

 View Only

  • 1.  External and Internal LDAP servers

    Posted Thu February 25, 2021 02:22 PM
    ISVA uses OpenLDAP for its internal LDAP server, do you know which version it is using in ISVA 10?
    If I want to use an external LDAP server, why not use also the same OpenLDAP IBM users internally?
    Which LDAP servers are recommended and which do not work? For example, I believe AD does not work with SCIM, so we cannot use it as an external LDAP server!

    ------------------------------
    Joao Goncalves
    Pyxis, Lda.
    Sintra
    +351 91 721 4994
    ------------------------------


  • 2.  RE: External and Internal LDAP servers

    Posted Thu February 25, 2021 03:27 PM
    Joao,
     
    In answer to your questions:
     
    ISVA uses OpenLDAP for its internal LDAP server, do you know which version it is using in ISVA 10?
    It uses OpenDAP v2.4

    If I want to use an external LDAP server, why not use also the same OpenLDAP IBM users internally?
    If this is the main user registry (i.e. not a federated registry) you must use on of the support user registries.  The main reason for this is that different schemas, for the secAuthority=Default suffix, is required for different registries.  In 10.0.1 we officially added support for OpenLDAP as a user registry.

    Which LDAP servers are recommended and which do not work? For example, I believe AD does not work with SCIM, so we cannot use it as an external LDAP server!
     
     

    Scott A. Exton
    Senior Software Engineer
    Chief Programmer - IBM Security Verify Access
    IBM Master Inventor

     
     



    Original Message


Related Content