Authentication with LDAP (Basic, Cookie)
2017 R1 Update Rollup 1

Authentication with LDAP (Basic, Cookie)Permanent link for this heading

The following chapters describe a basic authentication method using LDAP and HTTP cookies. This authentication method authenticates using LDAP credentials entered by the user and then stores a cookie with the authentication information, so that credentials are only required and validated during the initial request. Consequently, clients such as the Fabasoft Folio Client do not require credentials once the cookie is available.

Performance Note: This authentication method should only be used for web services that are accessed interactively via web browsers. Otherwise, HTTP requests from non-browser clients that ignore cookies set by the server (e.g. conversion service requests) may cause significant performance problems because every single HTTP request has to create a new Fabasoft Folio session in that scenario. Use the environment variable FSCVEXT_AUTHMETH to configure the authentication method for specific hosts or web services.

Configuration LDAPPermanent link for this heading

Follow the steps to configure for Authentication With LDAP (Basic).

Configuration CookiePermanent link for this heading

The following additional settings are necessary for the configuration of LDAP (basic, cookie):

  1. Open the Virtual Application Configuration, which is referenced in the Current Domain or Domain Type.
  2. Click the “Authentication” tab.

The following relevant properties are available:

  • Cookies
    • Cookie Valid in Session
      Set the value of this property to “Yes”, if the authentication should only be valid during a user session.
    • Authentication Expires After Minutes
      Define after how many minutes the authentication of a user expires, who is actively working with the system.
    • Authentication of an Idle Session Expires After Minutes
      Define after how many minutes the authentication of a user expires, who is not actively working with the system.