How To Authenticate Users From One LDAP Provider And Authorize Them From Another LDAP server.

(Doc ID 2391061.1)

Last updated on APRIL 26, 2018

Applies to:

Oracle WebCenter Content - Version 11.1.1.8.0 and later
Information in this document applies to any platform.

Goal

WebcenterContent 11g or 12c.

The domain is configured such that multiple LDAP providers are present.

It is desired that users authenticate against one of the LDAP servers but be authorized against another LDAP server.

As an example, a SAML authenticator is being utilized:

From the config.xml file: <sec:authentication-provider xsi:type="wls:saml-authenticatorType">

The SAML authenticator will contain the users but no group memberships.

But another provider does contain user group memberships.

This How To will show the steps to authenticate users from one provider and be authorized from another provider.
 

Solution

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms