Endeca Platform Services Security Guide · Version 6.0.3 · June 2012
Copyright © 2003, 2012, Oracle and/or its affiliates. All rights reserved.
The first method of authentication is to store user-relevant information in an LDAP directory.
The LDAP (Lightweight Directory Access Protocol) directory typically stores security-related information, such as a user’s login name and what groups that user belongs to. Once login information is received from the end user, it is passed to the Endeca LDAPLoginModule plug-in, which then communicates with the LDAP server, which performs the actual validation against its LDAP directory.
The LDAP server can also return a user’s group membership information, if it is stored in the LDAP directory. This information will later be used to define the user’s access privileges in the Endeca implementation.
The LDAP-based plug-in is implemented with the Presentation API LDAPLoginModule class.
Endeca Platform Services Security Guide · Version 6.0.3 · June 2012
Copyright © 2003, 2012, Oracle and/or its affiliates. All rights reserved.