Configure authentication using an LDAP-compliant identity service
How to configure authentication using LDAP in Cloudera Manager.
An LDAP-compliant identity/directory service, such as OpenLDAP, provides different options
for enabling Cloudera Manager to look-up user accounts and groups in the directory:
- Use a single Distinguished Name (DN) as a base and provide a pattern (Distinguished Name Pattern) for matching user names in the directory, or
- Search filter options let you search for a particular user based on somewhat broader search criteria – for example Cloudera Manager users could be members of different groups or organizational units (OUs), so a single pattern does not find all those users. Search filter options also let you find all the groups to which a user belongs, to help determine if that user should have login or admin access.