User Authentication with LDAP

This section explains how to authenticate users via the Endeca LDAPLoginModule plug-in.

Overview of the LDAP user authentication process
The LDAPLoginModule plug-in handles logins that are authenticated against an LDAP directory.
Obtaining the user information
The first step is for the application to extract the user identity from the user’s X.509 certificate.
Instantiating an MDEX Engine connection object
An AuthHttpENEConnection object is used to connect to the MDEX Engine.
Querying the LDAP server
The AuthHttpENEConnection class has a login method to query the LDAP directory for authentication.
User entitlement filter
The Endeca Access Control System automatically creates an entitlement filter for a user.
Making a secure MDEX Engine query
The Presentation API AuthHttpENEConnection class methods are used to for secure queries to the MDEX Engine.
Using stacked authentication
The Java version of the Endeca Access Control System also supports the notion of stacked authentication.