LDAP Authentication

LDAP Authentication allows users to log into Oracle Retail Xstore Office using a single sign-on where one password for a user is shared between many services. This feature uses LDAP (Lightweight Directory Access Protocol) and Microsoft's AD (Active Directory) repository to manage the user ID and password access to the application.

Note:

LDAP is used for authentication to Oracle Retail Xstore Office, but the user information must be set up in the Oracle Retail Xstore Office database for the users to access the application.

Assumptions and Requirements for LDAP Users

• LDAP - managed users do not have the ability to manage their passwords from within Oracle Retail Xstore Office, or the ability to use password reset or password change functionality.

• A single LDAP server must be configured for the Oracle Retail Xstore Office instance. Multiple LDAP authentication servers are not supported.

• Account locking (for example, after "X" login attempts) and unlocking is not available through Oracle Retail Xstore Office. It may be available through the LDAP server.

Additional Details for LDAP Authentication

• The server must be a domain controller, for example, ldap://localhost:389.

• Add a user in the Active Directory Users and Computers section of the Server Manager. For example, add the user to the folder Client Services of the main branch.

• When setting up the user, the password entered, is the same password for logging on to Oracle Retail Xstore Office with this user.

Oracle Retail Xstore Office LDAP Settings

LDAP Authentication settings are configured in System - Xadmin Settings - User Account category.

Default Domain Name for LDAP - The default domain name to be used when authenticating users using LDAP.

Enable LDAP Authentication Option? - The configuration used to enable Oracle Retail Xstore Office to authenticate users using LDAP directory.

LDAP Provider URL - The URL to be used to connect to LDAP server.