On this page:
   24.54    JSON Web KeySet (JWKS) 24.56    Lucene FullText Indexing   

24.55LDAP Authentication

 

The LDAP Authentication configuration category includes the following configurable options:

  • LDAP Server URL

  • System User DN

  • System User Password

  • Native Permission User Attribute

  • User Attribute: Given Name

  • User Attribute: Family Name

  • Global Permissions

  • Base DN for Groups

  • Search Groups Recursively

  • Authentication: User Base DN

  • Authentication: User Query

  • Require Group DN

24.55.1Property: LDAP Server URL

 
Property Key
Property Type STRING
Description The URL to connect to the LDAP server (e.g. ldap://example.com:389).
Default Value (no default)
Is Optional? No

24.55.2Property: System User DN

 
Property Key
Property Type STRING
Description The identity for the user account that Smile CDR will use for system operations.
Default Value (no default)
Is Optional? No

24.55.3Property: System User Password

 
Property Key
Property Type PASSWORD
Description The password for the user account that Smile CDR will use for system operations.
Default Value (no default)
Is Optional? No

24.55.4Property: Native Permission User Attribute

 
Property Key
Property Type STRING
Description If specified, this user attribute will be treated as having native Smile CDR permission strings that will be granted to users.
Default Value smileCdrPermission
Is Optional? Yes

24.55.5Property: User Attribute: Given Name

 
Property Key
Property Type STRING
Description The name of the LDAP User Attribute from which to read the user's given (first) name.
Default Value givenName
Is Optional? Yes

24.55.6Property: User Attribute: Family Name

 
Property Key
Property Type STRING
Description The name of the LDAP User Attribute from which to read the user's family (last) name.
Default Value sn
Is Optional? Yes

24.55.7Property: Global Permissions

 
Property Key
Property Type STRING
Description A comma separated list of permissions to grant all users who authenticate using this module (e.g. ROLE_FHIR_CLIENT, FHIR_READ_ALL_IN_COMPARTMENT/Patient/123).
Default Value (no default)
Is Optional? Yes

24.55.8Property: Base DN for Groups

 
Property Key
Property Type STRING
Description The DN to use when searching for groups.
Default Value (no default)
Is Optional? Yes

24.55.9Property: Search Groups Recursively

 
Property Key
Property Type BOOLEAN
Description If enabled, searching for groups will occur at any level below the value of groups.basedn and not just directly under that level.
Default Value false
Is Optional? No

24.55.10Property: Authentication: User Base DN

 
Property Key
Property Type STRING
Description When authenticating users, this is the base DN used to attempt to bind the user.
Default Value (no default)
Is Optional? No

24.55.11Property: Authentication: User Query

 
Property Key
Property Type STRING
Description This query is used to locate the authenticating user in order to attempt a bind.
Default Value userPrincipalName={0}
Is Optional? No

24.55.12Property: Require Group DN

 
Property Key
Property Type STRING
Description If set, specifies the DN for a required group. Any authenticating users will only be permitted to authenticate if they are a member of this group.
Default Value (no default)
Is Optional? No
   24.54    JSON Web KeySet (JWKS) 24.56    Lucene FullText Indexing