Multiple organizations for LDAP user

book

Article ID: 129983

calendar_today

Updated On:

Products

CA API Developer Portal CA API Gateway

Issue/Introduction

How do we configure, in detail, multiple organizations in a LDAP user attribute field in order to have that user assigned to these organizations, assuming all these Organizations have already been created in Dev. Portal?



Environment

Developer Portal 4.3.1
 

Resolution

How to map LDAP user to multiple organizations in Portal 

In order to have LDAP user mapped to multiple organizations the portal LDAP authentication scheme Authorization Type MUST be set to “Portal”.  After the user successfully logs into the portal for the first time the admin can add the different organisations for that user 

Login in as portal Admin create the different organizations
 

<Please see attached file for image>

Defining different Org

Edit the LDAP authentication scheme:
  • From API Portal, select Administration, Authentication.
  • Select Edit from the Actions menu of the authentication scheme.
  • Go to Attribute Mapping section, and select Portal from Select Authorization Type.
  • Save the authentication scheme.

<Please see attached file for image>

Authoriation Type

When the New developer logs into the portal for the first time they will be Guest Users.  To add multiple organization the Admin needs to edit the user. User PP no organizations:

<Please see attached file for image>

First Login
Map users to multiple organizations: Admin logs into portal
Select Users
 

<Please see attached file for image>

Modify User
Go to the Developers tab.
In the Actions menu for the registered user, select Edit.

 

<Please see attached file for image>

Edit User

The user details are displayed. This is a read-only page.
Select Next
.
From the Select Organization and Role page, select the organization and the corresponding role.
 

<Please see attached file for image>

Add orgs
Select Save to save the mapping.
The user is mapped to one or more organizations.

Log back into portal as the user - you should now have the ability to switch organizations 
 

<Please see attached file for image>

Switch orgs

Additional Information

From the documentation:
Multiple organizations support is available in onprem release 4.3.1.
Please refer below link for Multiple organizations support to LDAP: 

https://docops.ca.com/ca-api-developer-portal-enhanced-experience/4-3/en/set-up-and-maintenance/configure-authentication-schemes/map-idp-users-to-multiple-organizations

 

Attachments

1558688357513000129983_sktwi1f5rjvs16fla.png get_app
1558688355646000129983_sktwi1f5rjvs16fl9.png get_app
1558688353883000129983_sktwi1f5rjvs16fl8.png get_app
1558688352204000129983_sktwi1f5rjvs16fl7.png get_app
1558688349986000129983_sktwi1f5rjvs16fl6.png get_app
1558688348037000129983_sktwi1f5rjvs16fl5.png get_app
1558688345079000129983_sktwi1f5rjvs16fl4.png get_app