Advanced Authentication (AAf): AAF Webserver without directly connection to LDAP

In adition to https://ideas.microfocus.com/MFI/advance-authentication/Idea/Detail/14920
It would be very nice if an AAF Webserver may check user data directly over their database servers and not directly to the ldap servers.

What happens today:
User is connecting to the AAF Webserver. At this point the user type the username. After that AAF need to connect to the LDAP Server to check that the Users exists.
To do this customers has to create a rule from their DMZ to the internal network so that the AAF Webserver is able to connect to the LDAP Servers. This may weak the security.

What customers want:
User is connecting to the AAF Webserver. At this point the user type the username. After that AAF send this data to their AAF Database Servers an these servers will check if the user exists in the ldap.
After that the webserver get a response from the Database Server and the normal workflow is going on.

by: Kevin S. | over a year ago | Installation/Deployment

Micro Focus Enhancement Requests Portal is moving. We are migrating the IDEAS from this site to the New Idea Exchange on May 6th. For more information on the new Idea Exchange please visit the Community FAQs.

6

AAF Webserver without directly connection to LDAP

Comments