Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 5 Next »

If your organization uses Okta for LDAP authentication, you can configure Zephyr Enterprise for authentication via Okta.

The image below demonstrates the authentication procedure:

To configure Zephyr, log in as an administrator, go to Administration > Authentication and select LDAP from the Authentication System drop-down menu.

The settings you specify to connect to Okta vary depending on the application you use. In our example we use the following Connection Info:

Setting

Value

Example

Select Directory

Apache Directory Server 1.0.x

LDAP Host

The host name of your LDAP server you access through Okta.

<org_subdomain>.ldap.<domain>.com

 where <domain> is either oktapreview, okta, or okta-emea.

ldaps://xyz.ldap.okta.com

Base DN

The root location where the application will start searching for users and groups.

[<ou=users or groups>],<dc=org_subdomain>, dc=<domain> , dc=com

where <domain> is either oktapreview, okta, or okta-emea.

dc=xyz,dc=okta,dc=com

Search Attribute

uid

The search attribute to use when loading the username. uid means user ID.

uid

Bind DN

The distinguished name used to connect to the LDAP server.

uid=<username>,<dc=org_subdomain>,dc=<domain>,dc=com

where <domain> is either oktapreview, okta, or okta-emea.

Note: Must be an admin, but can be a Read-Only admin.

uid=abc,dc=xyz,dc=okta,dc=com

Bind Password

The password of the admin user used to connect to the LDAP server.

password

Username

The username of the sample user used to test authentication.

Password

The password of the sample user used to test authentication.

password

When you select Apache Directory Server 1.0.x, the following advanced setting will become available:

Setting

Value

Search Attribute

uid

User Object class

inetOrgPerson

User Object Filter

(objectClass=inetOrgPerson)

User First Name Attribute

givenName

User Last Name Attribute

sn

User Email Attribute 

email

Group Object Class

groupofUniqueNames

Group Object Filter

(objectClass=groupOfUniqueNames)

Group Name Attribute 

cn

Group Description Attribute

description

Group Members Attribute

uniqueMember

User Members Attribute

memberOf

NotememberOf is not an indexed value. Using memberOf will result in slow search time.

Click Save after you populate all the fields.

See Also

Authentication
SSO Setup with Okta in Zephyr
SSO Setup with Azure AD in Zephyr

  • No labels