Configuring LDAP mode in Talend Administrator Center (TAC) and Studio

Overview

This article explains how to configure Talend Administrator Center (TAC) and Studio in LDAP mode.

 

Scenario

To illustrate the LDAP configuration, this article uses the open LDAP service provider, JumpCloud, with two users, ldaptest and user1. However, you can use any LDAP configuration that fits your business needs.

Before you begin the configuration, if you have not already done so, create your LDAP users and ensure they are ready to use.

user1.jpg

 

Configuring TAC

  1. Enable LDAP configuration on the TAC Configuration page.

    ldap configuration.jpg

     

  2. Once LDAP is enabled, complete the following parameters, as explained below:

    1. Host: Enter the IP address and the host of the LDAP server. This example uses JumpCloud, so the host address is ldap.jumpcloud.com.

    2. Port: Enter the port of the LDAP server. The example uses port 389.

    3. Ldap principal DN prefix: Enter the login of the user who has the right to search on the specified root or branch. This example uses ldaptest, thus the value is uid=ldaptest,ou=Users,o=5ba36e3d8862633f98a486c6,dc=jumpcloud,dc=com.

    4. Admin password: Enter the password of the user who has the right to search on the specified root or branch.

    5. login field: Enter the attribute corresponding to user login in your LDAP server. This value cannot be empty. In most cases uid works fine.

    6. Email field: Enter the attribute corresponding to user email in your LDAP server. This value cannot be empty. In most cases mail works fine.

    7. Firstname field: Enter the attribute corresponding to user Firstname in your LDAP server. This value cannot be empty. In most cases givenname works fine.

    8. Lastname field: Enter the attribute corresponding to user Lastname in your LDAP server. This value cannot be empty. In most cases sn works fine.

    9. Use LDAP login/password: Select true so that the TAC credentials are used to login to SVN/Git. In this case, Talend Studio checks user credentials directly against the LDAP.

    10. SvnLogin field/Git login field: Enter the name of the attribute representing the data that corresponds to the user's SVN or GIT login. This field must correspond to the field defined in your LDAP configuration.

      If you use the LDAP system to handle the SVN and Git credentials, it is recommended that you edit these credentials through LDAP and not through the Users page, as TAC automatically retrieves the changes done on these credentials.

    11. SvnPassword field/ Gitpassword field: Enter the name of the attribute representing the data that corresponds to the user's SVN or GIT password. This field must correspond to the field defined in your LDAP configuration.

      If you use the LDAP system to handle the SVN and Git credentials, it is recommended that you edit these credentials through LDAP and not through the Users page, as TAC automatically retrieves the changes done on these credentials.

    ldap_conf.jpg

     

Adding a User in TAC

  1. On the Main menu click Users.

  2. To add a new User, click Add.

  3. Configure the parameters, as explained below:

    1. Distinguished Name: Enter the user name to authenticate the user and retrieve the corresponding connection information (Login, First name, Last name and Password).

    2. Type: Select Data Integration /ESB or Data Management and Master Data Management, according to the license you set in TAC.

    3. Role: From the dialog box select the role you want to assign to the user.

    4. Data Preparation User: Select the Data Preparation User check box to set this account as a Data Preparation account and to assign the user the corresponding Data Preparation roles.

    5. Data Stewardship User: Select the Data Stewardship User check box to set this account as a Data Stewardship account and to assign the user the corresponding Data Stewardship roles.

    6. Group: From the dialog box select the group in which you want to add the user.

    7. Active: Activate/deactivate an account to enable/disable the selected user to access Talend Administration Center and Talend Studio.

      user.jpg

       

  4. The newly created Users are visible according to their roles.

    users.jpg

     

Managing connections in Studio

  1. Launch Talend Studio. On the connection screen, click Manage Connections. Complete the parameters, as explained below:

    1. Repository: Select the repository from the drop-down list.

    2. Name: Enter any user defined repository name.

    3. Description: Enter a description of the repository.

    4. User Name: Enter the ldap user name.

    5. User Password: Enter the ldap user password.

    6. Workspace: Enter the complete path of your workspace.

    7. Web-app Url: Enter the TAC web URL address.

  2. Select Check url to make sure the connection is working. Click OK.

    manage connection.jpg

     

  3. Depending on the project authorization, you will see the projects that are assigned to the ldap user. In this example, the user is assigned to one project. When prompted, enter the version control tool password, then click Finish. Log into Studio.

    studio.jpg

     

  4. Once you do the Push to Git, validate to confirm the user.

    git.jpg

Version history
Revision #:
23 of 23
Last update:
‎02-24-2019 11:12 PM
Updated by:
 
Comments
Employee

Above example uses JumpCloud for LDAP. Here is an article for list of LDAP attributes used in TAC:

https://support.jumpcloud.com/customer/en/portal/articles/2952521-user-attributes