3.9. Setting Up Secure Authentication

Use the steps below to set up secure authentication.

Note

It is necessary to provide the credentials of a user that has 'read' access to the user directory. This user will be used to read user information from the directory.

Oracle VDI Manager Steps

  1. In Oracle VDI Manager, go to Settings and then Company.

  2. In the Companies table, click New.

    The New Company wizard is displayed.

  3. On the Choose User Directory step, select LDAP.

  4. On the Specify Connection step, configure secure authentication.

    1. Select Secure Authentication.

    2. In the Host field, enter the fully-qualified DNS name or IP address of the LDAP server.

    3. In the Port field, enter the port number used for secure connections to the LDAP server.

      The default port number is 636.

    4. (Optional) In the Base DN field, enter the distinguished name (DN) of an LDAP object to use as the search base.

      For example: cn=Users,dc=example,dc=com.

      The base DN is used to restrict the part of the LDAP directory used to search for users.

    5. In the User Name and Password boxes, enter the DN and password of a user that has sufficient privileges to search the LDAP directory.

      For example, cn=super-user,cn=Users,dc=example,dc=com.

  5. On the Verify Certificate step, check that the SSL certificate details are correct.

  6. On the Define Company step, enter the company details.

    1. In the Name field, enter the name of the company.

    2. (Optional) In the E-Mail Domain Name field, enter one or more email domain names.

      Enter multiple domain names as a comma-separated list.

      If you enter an email domain, users can log in with their email address.

    3. (Optional) In the Comments field, enter any notes about the company.

  7. On the Review step, check the configuration of the company and click Finish.

    The new company is added to the Companies table.

  8. (Optional) If you want users to authenticate only once when logging in using their email address, set the default domain in the user directory.

    /opt/SUNWvda/sbin/vda directory-setprops [-u CompanyName] \
    -p directory.default.domain=domainname