HPA Portal installation HPA portal Connection to LDAP

Keycloak URL

The default keycloak management URL is : https:///keycloak

Realms

There both 2 realms in Keycloak can be configure with a LDAP :

  • Master to authenticate as administrator on Keycloak itself
  • Hexagon-HPA to authenticate users on HPA portal and Webview

The LDAP can be identical or different

FAQ : Logout fron webview leads to Exception

If when you log out from webview, an exception is displayed on the screen, then check the following parameter :

Hpa Realm > Clients > com.ca.apm.webview.serviceprovider > Logout settings

Set Front channel logout to “Off”

Configure Front channel logout

Add LDAP to a Realm

For LDAP authentication :

  1. open the Hexagon-HPA realm
  2. open User federation in the left menu
  3. click on Add Ldap providers

keycloak_ldap

  1. Enter the LDAP information

keycloak_federation

LDAP settings

Usually the information needed for Active Directory are :

  • Connection URL : ldaps://server:port
  • Bind user DN
  • Bind user password
  • User DN : the base DN to find users
  • Disable import users
  • Activate read only

Others options exists according to your LDAP configuration

LDAP configuration screenshots

LDAP connection

LDAP search

LDAP cache

LDAP role mapping

LDAP roles mapping