Logo Sonatype CLM Sonatype CLM Server - Security Administration Guide
Documentation Index
Sonatype CLM Downloads
Document Descriptions
Release Notes

Sonatype CLM Server
Installation and Deployment Guide
Security Administration Guide
Policy Management Guide
Report User Guide

CI User Guide

IDE User Guide

Repository Manager User Guide

Nine Steps For Open Source Governance
Optimized Component Lifecycle Management with Sonatype CLM

Sonatype CLM Server - Security Administration Guide

Chapter 3. LDAP Integration

3.1. Configuring the LDAP Server Connection
3.2. LDAP Configuration Parameters
3.3. Mapping LDAP Users to Sonatype CLM
3.4. LDAP User Parameters
3.5. Mapping LDAP Groups to Sonatype CLM
3.6. LDAP Group Parameters
3.6.1. Static Groups
3.6.2. Dynamic Groups
3.7. Verifying LDAP Configuration
3.7.1. Test Connection
3.7.2. Check User and Group Mapping
3.7.3. Check Login

Light Weight Directory Protocol, also known more commonly as LDAP, provides both a protocol and a directory for storing user information. In some ways LDAP has become a ubiquitous part of most organizations' efforts to create a single sign on environment, as well as streamline user management for various applications. While we will cover some LDAP basics, the information provided here is limited and should not be considered a full reference.

Sonatype CLM supports a single LDAP realm, which simply means we support connection to a single LDAP server. This connection is configured via the Sonatype CLM Server. There are essentially two parts to integrating Sonatype CLM with LDAP:

  • Configure the LDAP Server Connection
  • Map LDAP User and Group Elements to Sonatype CLM

Our setup instructions provide an example using the Active directory format, and represent only the most basic approach. What we provide in this guide assumes a simple authentication method for LDAP. However, on a standard installation of Sonatype CLM, you would likely not want to use Simple Authentication as it sends the password in clear text over the network. Additionally, we have indicated a search base which corresponds to our organization’s top-level domain components "dc=sonatype,dc=com". The structure can vary greatly based on your own LDAP server configuration.

Note

Once the LDAP server is configured and user attributes have been mapped, both LDAP users and users created in the Sonatype CLM Realm will be able to login into Sonatype CLM.