Creating authentication realms

Follow these steps to create an authentication realm.

Procedure

  1. Click Manage Security > Authentication Realms > Add New to open the New Authentication Realm pane.
  2. In the Name and Description fields, type a name and description for the new realm.
  3. Select the authorization realm from the Authorization Realm list.
  4. Type the realm type in the Type field.
  5. If you want the new realm to be enabled, ensure that the Enabled box is selected. New realms are enabled by default.
  6. Specify the following parameters:
    Table 1. Authentication Realm properties
    Field Description
    LDAP URL URL to the LDAP server beginning with ldap:// or ldaps://. Separate additional servers with spaces.
    User Search Base When searching multiple directories, the starting directory that is used for searches, such as ou=employees,dc=mydomain,dc=com.
    User Search Filter When searching multiple directories, LDAP filter expression that is used to search for user entries. The name is substituted in place of 0 in the pattern, such as uid={0}. If the value is not part of the DN pattern, wrap the value in parenthesis, such as (accountName={0}).
    Search User Subtree When searching multiple directories, check this box to search directories below the base directory.
    Search Connection DN The complete directory name to use when binding to LDAP for searches. If not specified, an anonymous connection is made.
    Search Connection Password The password that is used when binding to LDAP.
    Name Attribute Contains the user's name, as set in LDAP.
    Email Attribute Contains the user's email address, as set in LDAP.
    Allowed Failed Login Attempts Number of attempts allowed.

Results

When a new user logs on using their LDAP credentials, a corresponding IBM® UrbanCode Release is created.

Feedback