Create the LDAPBIND service

  1. Create this XML file by copy-pasting to a text tool or some other method of your choice: 
    <?xml version="1.0" encoding="ISO-8859-1"?>
<BATCH_LOAD FORMAT="" OVERRIDE="true">
    <SERVICE>
        <HasCredential>true</HasCredential>
        <LoginProcedure>Form based</LoginProcedure>
        <ID>LDAPBIND_SVC_LSF</ID>
        <SvcEntryAttrList>password,USER</SvcEntryAttrList>
        <LOGINSCHEME NAME="Form">
          <PROTOASSERT>Use HTTPS always</PROTOASSERT>
          <HTTPURL>http://New_LSF_WebServer:New_LSF_WebServer_Port/sso/SSOServlet</HTTPURL>
          <HTTPSURL>https://New_LSF_WebServer:New_LSF_WebServer_Port/sso/SSOServlet</HTTPSURL>
          <PRIMARYTARGETLOOKUP>Use ldap binds</PRIMARYTARGETLOOKUP>
          <PROVIDER>ldap://LDAP_Server:LDAP_Server_Port</PROVIDER>
          <CTX_FACTORY>com.sun.jndi.ldap.LdapCtxFactory</CTX_FACTORY>
          <SEARCH>TRUE</SEARCH>
          <LDAP_SEARCH_FILTER>(&amp;(&lt;NAMING_ATTR&gt;=&lt;NAMING_ATTR_VALUE&gt;)
             (objectclass=&lt;STRUCTURAL_OBJCLASS_VALUE&gt;))</LDAP_SEARCH_FILTER>
          <LOGIN_RDN>LDAP_Server_DN</LOGIN_RDN>
          <NAMING_ATTR>userPrincipalName</NAMING_ATTR>
          <STRUCTURAL_OBJECTCLASS>user</STRUCTURAL_OBJECTCLASS>
          <DEREF_ALIASES>always</DEREF_ALIASES>
          <REFERRAL>follow</REFERRAL>
          <USERNAMEFIELD>_ssoUser</USERNAMEFIELD>
          <PASSWDFIELD>_ssoPass</PASSWDFIELD>
          <LOGIN_SUBMIT_METHOD>POST</LOGIN_SUBMIT_METHOD>
          <LOGINSCHEMENAME>DEFAULT</LOGINSCHEMENAME>
          <SERVICEURL>https://New_LSF_WebServer:New_LSF_WebServer_Port
            /sso/SSOServlet</SERVICEURL>
        </LOGINSCHEME>
        <IdentityAttrList>USER</IdentityAttrList>
        <CredentialAttrList>PASSWORD</CredentialAttrList>
    </SERVICE>
</BATCH_LOAD>
  2. Substitute the values for the following with your values:

    • LDAPBIND_SVC_LSF: The name of the service that you are creating to support ldapbind authentication.

      Note: This section of the document uses "LDAPBIND_SVC_LSF" in examples.

    • New_LSF_WebServer: The fully qualified name of the web server that you created for ldapbind authentication.

    • New_LSF_WebServer_Port: The web server port that will be used for ldapbind authentication.

    • LDAP_Server: The name of the LDAP server that will be used for ldapbind authentication.

    • LDAP_Server_Port: The LDAP server port that will be used for ldapbind authentication.

    • LDAP_Server_DN : The domain name of the LDAP server that will be used for ldapbind authentication.

  3. Save the file with a name that will make it easy for you to remember its purpose, for example, LDAPBIND_SVC_LSF.xml
  4. From the LSF command prompt, type the following command

    ssoconfig -l SSOCONFIGPW LDAPBIND_SVC_LSF.xml

    where

    • SSOCONFIGPW is the ssoconfig password for your site

    • LDAPBIND_SVC_LSF.xml is the name of the file you just created that contains configuration for the LDAPBIND service, for example, LDAPBIND_SVC_LSF