I have a customer that is using the CMOD client to retrieve documents and they would like to use LDAP. I have never integrated/setup CMOD using LDAP, and I am just wondering if there is any point to using it when using the thick client, compared to if we were using ODWEK.
Thanks!
LDAP with CMOD is a bit of a mess.
The snag is that CMOD only uses LDAP for password authentication -- not any of the other things that LDAP is good for, like centrally maintaining group membership, and assigning permissions through those group memberships. So you end up maintaining a list of CMOD Users & Groups, even if LDAP is enabled and working.
IBM Lab Services has some code that helps with LDAP (and SSO), so the best way forward is to work with them if you want to do anything over and above simple password authentication.
-JD.
Personally I don't think the LDAP integration is a mess :-D but that's my own view :-D
But that's true, LDAP with CMOD is only used for password authentication and nothing more.
Meaning you can have the same password as any other system using the same LDAP server.
For the authorisation / group /... then CMOD needs to manage them, and LDAP is useless for that part.