Configuring Spotfire Server for DIGEST-MD5 authentication of LDAP

These instructions apply for Active Directory LDAP configurations. Spotfire Server does not support GSSAPI for other LDAP configurations.

Procedure

  • When configuring SASL authentication with DIGEST-MD5, follow these guidelines:
    • The distinguished name (DN) does not work for authentication; the userPrincipalName attribute must be used instead.
    • Set the authentication attribute option to userPrincipalName.
    • Set the username attribute option to sAMAccountName.
    • All accounts must use reversible encryption for their passwords. This is typically not the default setting for Active Directory.
Related reference