TIBCO Spotfire Server 3.2.2 - TIBCO Product Documentation

More documents

Recommendations

Info

Authentication and User Directory To simplify administration, it is possible to automatically synchronize user names and, optionally, group membership from an external source. Spotfire is able to synchronize users from the following external sources: • An LDAP directory • A Windows NT Domain Controller As in the case of authentication, the first option can be a Windows Domain Controller or a Sun Java Directory Server, and the second a Windows NT4 Domain Controller. User directory synchronization is a good way to simplify user configuration, as users that exist in the LDAP directory or Windows NT Domain can automatically be used in the Spotfire system as well. You can specify which users to synchronize by adding filters, so that you do not synchronize your entire LDAP tree or Windows NT Domain. If users are synchronized from an LDAP directory, you can also configure synchronization of groups. In this scenario, both users and the groups they belong to in the LDAP tree are synchronized, providing even simpler administration of users. The imported groups exist in Spotfire as any other group, but cannot be modified. In order to change their permissions, however, you can add them to a regular, non-imported group. Synchronization of groups is not available if you synchronize with a Windows NT Domain Controller. To set up user directory synchronization, you must have a user in the LDAP directory or the Windows NT Domain that has the appropriate permissions for reading user and group information. The login information of this user, together with some other information, is then entered into the configuration console. See the configuration console help for details on the various settings. You must specify a number of options in the configuration console for synchronization with an LDAP directory or a Windows NT Domain Controller. These are specified below. LDAP Directory Server Type Protocol Hostname Port Specifies the brand of your LDAP directory server. (dropdown list). Specifies whether to use LDAP (clear-text) or LDAPS (encrypted) (dropdown list). The hostname of your LDAP directory server. You can add more servers (such as more domain controllers within the same domain). The port on which the LDAP Directory Server communicates. 80 (144) TIBCO Spotfire® Server 3.2.2
Authentication and User Directory Username and Password Context Request controls Page size/Import limit Referral mode Enable group synchronization Specifies a user that is able to connect to the LDAP directory server and import user and group information. If you are using a Microsoft LDAP directory, the username is simply the name of the user. If you are using a Sun LDAP directory, the username field must include the user's UID, OU, and DC. For example uid=malcolm,ou=captains,dc=serenity,dc=firefly,dc=c om. Note: If you do not provide a context (see below), it is important that you use the fully qualified user name here. This option specifies which context or contexts of the LDAP directory you wish to read users from. A context can be an Organizational Unit, a Common Name, or any other container containing users. When searches for users and groups are performed, these may sometimes result in huge lists. In some LDAP directory types, it is possible to limit the number of results returned, or to divide them into several pages. This option specifies which, if any, controls like this should be used. If set to Probe, the Spotfire system will ask the LDAP directory servers for its capabilities. For most types of directory servers, the default value should be used. This setting will set the size of each page of returned results, or the total number of search results that should be imported, depending on the Request controls setting. For no limit at all, select the value -1. To avoid problems, it is recommended to configure Referral mode and Search filter, if possible, so that the number of search results will be reasonable. In a large LDAP Directory, different parts of the directory tree may be stored on different servers. When a search for users is made on one server, the result can therefore be a referral to a different server. This setting decides whether to conduct a follow-up search for the users in question on the referred server. The options are Follow, Ignore, Throw, and Default. This option specifies whether or not groups should be synchronized. TIBCO Spotfire® Server 3.2.2 81 (144)
Page 1 and 2:
TIBCO Spotfire ® Server 3.2.2 Inst
Page 3 and 4:
Contents 1 Installation Planning 6
Page 5 and 6:
10 Backup and Restore 128 10.1 Over
Page 7 and 8:
Installation Planning The Web Playe
Page 9 and 10:
Installation Planning If you are ru
Page 11 and 12:
Installation Planning When you set
Page 13 and 14:
Installation Planning Which port nu
Page 15 and 16:
Installation Planning Before you co
Page 17 and 18:
Installing Spotfire Server 3.2 2.2.
Page 19 and 20:
Installing Spotfire Server 3.2 The
Page 21 and 22:
Installing Spotfire Server 3.2 •
Page 23 and 24:
Installing Spotfire Server 3.2 If y
Page 25 and 26:
Installing Spotfire Server 3.2 Clic
Page 27 and 28:
Installing Spotfire Server 3.2 tha
Page 29 and 30: Installing Spotfire Server 3.2 2.6
Page 31 and 32: Migration from 10.1 3.2 Prerequisit
Page 33 and 34: Migration from 10.1 The values prom
Page 35 and 36: Migration from 10.1 3.7 Log Files I
Page 37 and 38: Upgrade from 3.0 or 3.1 to 3.2 4 Up
Page 39 and 40: Upgrade from 3.0 or 3.1 to 3.2 Belo
Page 41 and 42: Upgrade from 3.0 or 3.1 to 3.2 Data
Page 43 and 44: Upgrade from 3.0 or 3.1 to 3.2 Data
Page 45 and 46: Upgrade from 3.0 or 3.1 to 3.2 Upgr
Page 47 and 48: Configure the System 5 Configure th
Page 49 and 50: Configure the System You can also r
Page 51 and 52: Configure the System Note: This inf
Page 53 and 54: Configure the System 1 In the confi
Page 55 and 56: Configure the System privileges to
Page 57 and 58: Spotfire Administrative Tasks 6.2.3
Page 59 and 60: Load Balancing 7 Load Balancing Thi
Page 61 and 62: Load Balancing # Load the mod_jk mo
Page 63 and 64: Load Balancing # Convert usernames
Page 65 and 66: Authentication and User Directory 8
Page 67 and 68: Authentication and User Directory C
Page 71 and 72: Authentication and User Directory H
Page 73 and 74: Authentication and User Directory F
Page 77 and 78: Authentication and User Directory c
Page 79: Authentication and User Directory E
Page 83 and 84: Authentication and User Directory M
Page 85 and 86: Advanced Procedures Included in the
Page 87 and 88: Advanced Procedures the certificate
Page 89 and 90: Advanced Procedures Comment: There
Page 91 and 92: Advanced Procedures 9.5 Configuring
Page 93 and 94: Advanced Procedures The file krb5.c
Page 95 and 96: Advanced Procedures Add Spotfire Se
Page 97 and 98: Advanced Procedures 1 Open Tools >
Page 99 and 100: Advanced Procedures # Configure SSL
Page 101 and 102: Advanced Procedures 9.11 Preventing
Page 103 and 104: Advanced Procedures sqlplus @DBServ
Page 105 and 106: Advanced Procedures 9.16.2 For Wind
Page 107 and 108: Advanced Procedures • DB2 (DataDi
Page 109 and 110: Advanced Procedures Comment: You wi
Page 111 and 112: Advanced Procedures display-name dr
Page 113 and 114: Advanced Procedures catalog-namepat
Page 115 and 116: Advanced Procedures date-timelitera
Page 117 and 118: Advanced Procedures oracle Oracle
Page 119 and 120: Advanced Procedures Example: Config
Page 121 and 122: Advanced Procedures 1 Log into TIBC
Page 123 and 124: Advanced Procedures 9.19.2 Configur
Page 125 and 126: Advanced Procedures Servers will be
Page 127 and 128: Advanced Procedures 9 Click Start C
Page 129 and 130: Backup and Restore • HTTPS (see t
Page 131 and 132:
Technical Reference 11 Technical Re
Page 133 and 134:
Technical Reference 11.1.4 Console
Page 135 and 136:
Technical Reference Jakarta Service
Page 137 and 138:
Technical Reference Note: The v
Page 139 and 140:
Technical Reference page 47 for mor
Page 141 and 142:
Technical Reference Example: jdbc:t
Page 143 and 144:
Uninstall 12 Uninstall 12.1 Server
show all

TIBCO Spotfire Server 3.2.2 - TIBCO Product Documentation

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?