For simple authentication – HP Identity Driven Manager Software Series User Manual

3-89

Using Identity Driven Manager

Using the User Import Wizard

b. Select the LDAP Authentication type to be used with the imported user

data:

c. Click Next to continue to the Authentication details window:

The Authentication details will vary based on the Authentication type selected;
however, all LDAP Authentication methods require the following information:

•

Server – The IP Address or DNS name (fully qualified domain name) of the
LDAP server.
The IP address can be used for Simple, Anonymous, and Kerberos-V5
authentication in non-SSL mode.

•

Domain – The domain name that will be used to create the Domain in IDM.

•

Base DN – The Base Distinguished Name. This is the node in the directory
where the search for users will begin. For example, for the domain hp.com
the Base DN entry would be: dc=hp,dc=com

For Simple Authentication

Simple authentication, which is not very secure, sends the LDAP server the fully
qualified DN of the client (user) and the client's clear-text password. Values for
these fields can be obtained from the LDAP server administrator.

Option

Authentication type

Simple

Simple authentication, which is not very secure, sends the LDAP
server the fully qualified DN of the client (user) and the client's
clear-text password.

Digest-MD5

In Digest MD5, the server generates a challenge and the client
responds with a shared secret (password).

Kerberos-V5

Based on Internet standard security, Kerberos V5 authentication
is used with either a password or a smart card for interactive
logon.

External-TLS

External authentication uses authentication services provided by
lower level network services such as TLS.

Anonymous

No authentication is required by LDAP server.