Map LDAP Groups With Historian UAA

About this task

If you want LDAP users to use Web-based Clients, you must map the corresponding UAA groups with a Historian UAA group, which is created using Web-based Clients installation.

Procedure

  1. Double-click the UAA LDAP Tool icon on the Desktop.
    Tip: By default, this icon appears on the desktop after you install Web-based Clients.
    The UAA/LDAP Connectivity Tool page appears.
  2. Select the Map Existing LDAP Groups check box.
  3. In the UAA Connection section, provide values as specified in the following table.
    BoxDescription
    URLEnter the authorization server URL that you have specified in the UAA Base URL box during installation (for example: https://localhost/). For an external or a shared UAA instance, enter: https://<UAA server name>

    If using Historian 7.x UAA, enter a value in the following format: https://<Historian 7.x UAA server name>:8443. If you have changed the default port number, provide the correct one. If using Historian 8.x UAA, enter a value in the following format: https://<Historian 8.x UAA server name> (no port number required).

    Bind User DNEnter the distinguished name of the bind user (for example, cn=admin,ou=Users,dc=test,dc=com).
    User Search FilterEnter the starting point for the LDAP user search in the directory tree (for example, dc=developers,dc=com).
    User Search Base Enter the subdirectories to include in the search (for example, cn={0}).

    Group Search Filter

    		 Enter the starting point for the LDAP group search in the directory tree (for example, ou=scopes,dc=developers,dc=com).
    Client Secret Enter the subdirectories to include in the search (for example, member={0}).
  4. Select Test.
  5. Select Continue.
    In the UAA Mapping section, the drop-down list box contains a list of groups in Historian UAA. In the Filter box, a list of LDAP groups appears.
  6. In the drop-down list box, select the Historian Visualization UAA group to which you want to map LDAP groups.
  7. In the Filter box, select the check boxes corresponding to the LDAP groups that you want to map.
    Note: If a group is already mapped to the Historian UAA group that you have selected, the check box is already selected.
  8. Select Map Members.
    A message appears, confirming that the Historian UAA group is mapped to the LDAP groups that you have selected.

Results

The LDAP groups are mapped with the Historian UAA groups.