Provisioning LDAP User Information for the First Time

To provision LDAP user information for P6 EPPM for the first time:

Caution: Ensure that all users are logged out of P6 EPPM to ensure the Primavera P6 Administrator saves your new settings.

Note: Verify your default global profile; the global profile will be assigned to all provisioned users.

1. Log in to the Primavera P6 Administrator. See Primavera P6 Administrator Setup Tasks for details.
2. From the Authentication tab:
   1. Select Authentication and ensure that Login Mode is set to NATIVE.
   2. Select Database instance and ensure that Authentication Mode is set to Native.
3. Restart the application server instance.

   Note: If you do not restart the application server instance, the Primavera P6 Administrator will restore settings to the previous configuration.

4. Log in to P6 as a user with privileges to create a new user.
5. Follow the instructions in the Creating User Accounts for P6 EPPM section of the P6 EPPM Application Administration Guide to add a new user (in Native mode) that matches an LDAP server user with rights to read the LDAP directory.

   Note: Ensure that you have a P6 user and LDAP user that match.

   1. Assign a global profile that contains privileges to add new users and search the LDAP directory. See the Configuring User Access section of the P6 EPPM Application Administration Guide for details.
   2. Assign the appropriate project profiles and module access. See the Configuring User Access section of the P6 EPPM Application Administration Guide for details.
6. Log in to the Primavera P6 Administrator.
7. From the Authentication tab:
   1. Select your configuration.
   2. Change Login Mode to LDAP.
   3. Select your Database instance and set Authentication Mode to LDAP.
   4. To configure your LDAP Connection Settings[n].
      1. Select Enable SSL if you are using SSL.
      2. Select Chase Referrals to enable chase referrals.
      3. In the Host field, enter the host name of your LDAP server.
      4. In the Port field, enter the port number of your LDAP server. The default value is 636.
      5. In the Username field, enter the LDAP user name that has privileges to log in to the LDAP server and perform LDAP searches.
      6. In the Password field, enter the password for the user name you entered above.
      7. In the Base Directory Node field, enter the base directory node string that represents where the LDAP tree should search during login or provisioning. For example:

         dc=ad, dc=Marketing, dc=CompanyABC, dc=com

      8. In the Preferred Pool Size field, enter the preferred pool size. The default value is 10.
      9. In the Maximum Pool Size field, enter the maximum pool size. The default value is 20.
      10. In the Connection Timeout (in seconds) field, enter how long (in seconds) the system should try to connect to the LDAP before timing out. The default value is 300.
      11. Expand Field Map.

          Note: Except where noted, these settings represent what you will enter for an Oracle Internet Directory (OID) LDAP server and a Microsoft Active Directory.

      12. In the Username field, enter the LDAP field name that holds the user's login ID. For example:

          uid

          or

          samaccountname (for Microsoft Active Directory)

      13. In the Email ID field, enter the LDAP field name that holds the user's email address. For example:

          mail

      14. In the Actual Name field, enter the LDAP field name that holds the user's full name. For example:

          cn

          or

          displayname (for Microsoft Active Directory)

      15. In the Office Phone field, enter the LDAP field name that holds the user's phone number. For example:

          telephoneNumber

   5. Select Test Connection.
   6. Click Save Changes.
8. Restart the application server instance.

   Note: If you do not restart the application server instance, the Primavera P6 Administrator will restore settings to the previous configuration.

9. Log in to P6 as the new user you created when you were in Native mode.
10. On the Users page, click the Add icon and do the following:
    1. Add users as described in "Adding Users in LDAP or SSO Authentication Mode" in the P6 EPPM Application Administration Guide for details.
    2. If needed, change the configuration settings for the new users. See "Configuring User Access" in the P6 EPPM Application Administration Guide for details.

Tips

• When you provision users, changed records are updated in the P6 EPPM database and new users are added. However, users that have been deleted from the LDAP directory or LDIF file are not automatically removed from the P6 EPPM database. You must manually delete these users.
• You can copy a current user's settings to all the new users you create when you bring them in from LDAP.

Related Topics

About the Authentication Tab in the Primavera P6 Administrator

Configuring Web Single Sign-On Settings in the Primavera P6 Administrator

Configuring LDAP Settings in the Primavera P6 Administrator

Configuring HTTPS Settings in the Primavera P6 Administrator

Configuring Database Instance Settings in the Primavera P6 Administrator

Legal Notices | Your Privacy Rights
Copyright © 1999, 2023

Last Published Thursday, January 12, 2023