10.4.  Authentication
Prev Chapter 10. Configure Next

10.4.  Authentication

10.4.1. LDAP

Klaros-Testmanagement Enterprise Edition Feature

This feature is only available in Klaros-Testmanagement Enterprise Edition.

The authentication section allows the configuration of Klaros-Testmanagement for use with external authentication systems.

When using an external authentication system, the administrator is no longer required to manually create user accounts and provide the users with default passwords. Instead, an external system, like an existing LDAP directory, can be used to authenticate users.

If external authentication is activated, a user account inside Klaros-Testmanagement is automatically created when a user successfully authenticates against the external authentication system for the first time. The default role for newly created users is the tester role.

Only a user with the administrator role is able to edit the system parameters below.

10.4.1.  LDAP

In order to access an LDAP server, a rather large set of configuration parameters is required. Your local system administrator should be able to provide you with the correct values.

Figure 10.8. The LDAP Configuration Screen

The LDAP Configuration Screen

Parameters needed to contact the LDAP server:

  • Server Address

    The internet address under which the LDAP server resides (e.g. ldap.acme.com ).

  • Server Port

    The port on which the LDAP server is listening (typically 389 ).

  • Bind DN

    The distinguished name used for binding to this LDAP server.

  • Bind Credentials

    The credentials (password) required to be able to bind to this LDAP server.

Parameters needed to locate user accounts:

  • User Context DN

    The distinguished name under which user accounts are stored.

  • User DN Prefix

    The distinguished name prefix used to locate user accounts (e.g. uid= ).

  • User DN Suffix

    The distinguished name suffix used to locate user accounts (e.g. ,ou=Users,dc=acme,dc=com ). When locating user accounts the prefix, the account id and the suffix are concatenated to form the distinguished name of the user account.

  • User Object Classes

    A comma separated list of the LDAP object classes of the user account entries (e.g. person,posixAccount )

Parameters describing the attributes of a user account:

  • User Name Attribute

    The LDAP user name attribute which corresponds to the Klaros-Testmanagement account name (e.g. uid ).

  • User Password Attribute

    The LDAP password attribute which corresponds to the Klaros-Testmanagement account password (e.g. userPassword ).

  • First Name Attribute

    The LDAP user first name attribute which corresponds to the Klaros-Testmanagement account name (e.g. givenName ).

  • Last Name Attribute

    The LDAP user last name attribute which will form up the Klaros-Testmanagement account name (e.g. sn ).

  • Enabled Attribute

    The LDAP user attribute used for enabling/disabling this user for Klaros-Testmanagement.

When the Use as default checkmark is activated, the login screen will default to LDAP authentication for all users. It is still possible for existing users to authenticate against the Klaros user database if selected in the login screen.

Click the Test LDAP access link to test whether the fields are filled in properly. If successful the number of users found in the LDAP directory is shown in the message area.

Clicking the Save button submits your changes and clicking the Cancel button to discards them.

Visit http://www.verit.de

Copyright © 2008-2012 verit Informationssysteme GmbH
Prev Up Next
10.3.2.3. Deleting a User Home 10.5.  System Parameters