JDE0101
Active Member
Hi,
We're planning on implementing LDAP to manage password authentication in JDE. (But not the Roles)
I am confused as the documentation implies that if a new AD user signs onto JDE with a valid AD password and they *do not* have a JDE account defined then the account will be auto created via copying the _LDAPDEFLT profile.
Assuming this _LDAPDEFLT profile is configured with a valid F98OWSEC record and a default Role (per document advise) will this mean that the user can sign in to JDE straight away!!!???
I am trying to avoid the situation were a new AD user somehow signs onto JDE without us first ensuring they have the correct roles for that individual as trhe default role will nto be approiate for that individual!
We dont plan to move the role management into LDAP.
Any comments/advice would be great on how to use LDAP without allowing people to "sneak in" to JDE as they inherit the _LDAPDEFLT profile properties!
JDE E900, TR 9.1.2.1,
WAS 7.0.0.19
ISeries DB2 Database
We're planning on implementing LDAP to manage password authentication in JDE. (But not the Roles)
I am confused as the documentation implies that if a new AD user signs onto JDE with a valid AD password and they *do not* have a JDE account defined then the account will be auto created via copying the _LDAPDEFLT profile.
Assuming this _LDAPDEFLT profile is configured with a valid F98OWSEC record and a default Role (per document advise) will this mean that the user can sign in to JDE straight away!!!???
I am trying to avoid the situation were a new AD user somehow signs onto JDE without us first ensuring they have the correct roles for that individual as trhe default role will nto be approiate for that individual!
We dont plan to move the role management into LDAP.
Any comments/advice would be great on how to use LDAP without allowing people to "sneak in" to JDE as they inherit the _LDAPDEFLT profile properties!
JDE E900, TR 9.1.2.1,
WAS 7.0.0.19
ISeries DB2 Database