A virtual database can be configured to use LDAP authentication, which delegates user authentication to a LDAP server. Additionally to that, since Denodo 8.0, you can configure global LDAP authentication at server level. When a user tries to connect to a database or a Virtual DataPort Server configured for LDAP authentication, the server will check whether the user is a Virtual DataPort local user, and if not, it will connect to the configured LDAP server in order to check the credentials and roles of the user. To use LDAP authentication the following is needed:
When creating data sources, there is a “Pass-through session credentials" option. If selected, Virtual Data Port will use the user’s Virtual DataPort database login credentials to authenticate a query to the data source.
If a user connects to a database through LDAP authentication, and then queries a view from a data source with “Pass-through session credentials”, the user’s LDAP username and password will be used to execute the query. Read more about “Pass-through session credentials" in the Virtual DataPort Administration Guide section “Importing JDBC Sources”.
Knowledge Base Article: LDAP authentication best practices.
Virtual DataPort Administration Guide: LDAP Authentication.
Virtual DataPort Administration Guide: Administration of Databases, Users, Roles and their Access Rights.
Virtual DataPort Administration Guide: Importing JDBC Sources.