Hitachi

JP1 Version 12 JP1/Service Support Configuration and Administration Guide


5.15.2 Login authentication using an LDAP server

Organization of this subsection

(1) When not linking with the specific JP1 product

Login authentication uses the user IDs and passwords managed by an LDAP server (Active Directory). In this case, JP1/Service Support uses the user ID and password managed by an LDAP server. Therefore, JP1/Service Support does not need to manage its own user IDs and passwords. However, because the user information and access permissions displayed in the window are managed by using information registered in the Item management database, user IDs registered in the LDAP server must be registered in the Item management database.

(2) When linking with the specific JP1 product

Login authentication uses the user IDs and passwords managed by an LDAP server (Active Directory). In addition to the LDAP server authentication, the JP1/Base authentication sever is used for authentication of users who links with the specific JP1 product. By using the JP1/Base authentication server, users can launch the window of the specific JP1 product from JP1/Service Support, or launch the window of JP1/Service Support from the specific JP1 product, without the need of login authentication (Single Sign-On). Note that the IDs and passwords of linkage users must be registered or changed in the JP1/Base authentication server because they are also managed in the JP1/Base authentication server. However, if an LDAP server is used for JP1/Base authentication, the user IDs and passwords on the JP1/Base authentication server do not need to be changed.

For login authentication of JP1/Service Support, JP1/Service Support does not need to manage passwords because the user IDs and passwords managed by an LDAP server are used. However, because the user information and access permissions displayed in the window are managed by using information registered in the Item management database, users whose user IDs are registered in the LDAP server must be registered in the Item management database.

The following figure shows an example of login authentication using an LDAP server when linking with the specific JP1 product.

Figure 5‒14: Example of login authentication using an LDAP server (when linking with the specific JP1 product)

[Figure]

For details about the login authentication using an LDAP server, see 4.13.1 Linkage with an LDAP server.