How to configure Spectrum to integrate with LDAP
search cancel

How to configure Spectrum to integrate with LDAP

book

Article ID: 109003

calendar_today

Updated On:

Products

Spectrum Network Observability

Issue/Introduction

DX NetOps Spectrum is capable of integrating with Microsoft LDAP and users can log in through Active Directory.

Environment

All supported DX NetOps Spectrum releases

Resolution

Specify CA Spectrum LDAP Settings

Follow these steps to configure LDAP authentication in CA Spectrum OneClick:
  1. Log in to OneClick: Log in to the OneClick start page using a CA Spectrum administrator account.
  2. Navigate to LDAP Configuration: From the OneClick home page, select Administration > LDAP Configuration.
  3. Configure LDAP Server Settings: Fill in the appropriate values in the 'LDAP Server Settings' section:
    • Server Address: The hostname or IP address of your LDAP server.
    • Port: The port your LDAP server listens on (e.g., 389 for standard LDAP, 636 for LDAPS).
    • Base DN: The Distinguished Name of the base entry in your LDAP directory from which searches for users should originate (e.g., DC=yourdomain,DC=com).
    • Bind User DN: (If required by your LDAP server) The Distinguished Name of a user account that Spectrum will use to bind to the LDAP server and perform searches (e.g., CN=BindUser,OU=ServiceAccounts,DC=yourdomain,DC=com).
    • Bind Password: The password for the Bind User.
  4. Configure Password Saving (Optional): Configure the 'Save LDAP passwords to CA Spectrum database' section as needed. This option determines if user passwords are cached or not.
  5. Create Local Spectrum User (Crucial Step): Open the Spectrum Control Panel (or use the OneClick console's Users tab) and create a user account. The username for this Spectrum account MUST EXACTLY MATCH an existing username in your Active Directory/LDAP that will be used for authentication.
    1. Configure User by Pattern: Configure the 'User by Pattern' section to specify how Spectrum should construct the Distinguished Name (DN) of the user attempting to log in.
    2. Example for Active Directory: CN={0},OU=Users,DC=YourDomainController,DC=com" Without "
    3. Test Configuration: Enter a valid username (that exists locally in Spectrum and in AD) and its corresponding AD password in the provided fields, then select Test.
    4. Save Configuration: If the test authentication was successful, select Save to apply the LDAP settings.
    5. User Login Confirmation: Users should now be able to log in to Spectrum OneClick using their existing LDAP/Active Directory credentials, provided their corresponding local Spectrum user account has been created.

Additional Information

  • Please reference the "LDAP Configuration Page" section of the documentation for more information.
  • Please reference the following Article for more information on how to integrate using LDAPS

How to configure Spectrum to authenticate with Secure LDAP (LADPS)

Powered by Wolken Software