Configure LDAP authentication

Configuring LDAP authentication is advanced configuration and, if mis-configured, can prevent access to Smile. Before editing the Smile Access service you can create a new system service based on the Smile Access service as back up.

This task explains how to configure Smile for LDAP authentication.

  1. Contact Inomial to assist with the deployment of ldapAuth.ear.
  2. Select Services and Plans under Services, Ordering and Rating on the Configuration and Tools page.
    The Services and Plans page is displayed.
  3. Select System Services from the Show drop-down.
    All system services will be displayed.
  4. Click View to the right of Smile Access service.
    The Smile Access Service Billing tab is displayed.
  5. Click the Settings tab.
    The Settings tab is displayed.
  6. Set the Default realm to the Active Directory (AD) User Principal Name (UPN) suffix.
  7. Click the Authentication tab.
    The Authentication tab is displayed.
  8. Click New.
    The JNDI Name field is displayed.
  9. Type java:global/ldapAuth/ldapAuth/LdapPasswordAuthenticator in the JNDI Name field.
  10. Click Add.
    A Configuration Property window is displayed.
  11. Type the Key and Value of the first entry in the LDAP properties table in their respective fields. Click Save.
    The property is added to the Configuration Properties list.
  12. Repeat steps 10 and 11, until all properties listed in the LDAP properties table are displayed in the Configuration Properties list.
  13. Click Save.
    The Authentication tab is displayed.
  14. (Optional) Contact Inomial to change the default domain to match the UPN suffix if you want users to be able to login with just their username, instead of their UPN.
  15. Test the configuration by getting another user to log in to Smile.