LDAP server integration

The Fabric Services System supports the use of an optional Lightweight Directory Access Protocol (LDAP) server that the system can use to verify the authentication of users who were not created on the system.

You integrate an LDAP server by creating a Federation Provider instance on the Fabric Services System. After creating the Federation Provider instance, you can synchronize users from the LDAP server at any time.

The LDAP server is used as a read-only resource for authentication. When you integrate an LDAP server, you can continue to create users in Fabric Services System, but these newly created users are not pushed to the LDAP server when you synchronize.

Note:
  • You can only configure one instance of a Federation Provider.
  • User permissions and group memberships are managed from the Fabric Services System; they are not learned from the LDAP server.
  • The Fabric Services System supports up to 500 synchronized users.
  • Deleting a Federation Provider instance deletes all users imported into the Fabric Services System from the configured LDAP server.