Providing user login credentials in LDAP SSO installations

You can define internal authentication in LDAP SSO environments.

In LDAP SSO, the spectrum.security.authentication.internal.users property defines users that Spectrum will authenticate internally, as opposed to authenticating against an external LDAP AD FS user account repository. You must explicitly add user names to the spectrum.security.authentication.internal.users property in the spectrum-container.properties file. For example, if you do not define the "admin" user, that user cannot log in to the Spectrum™ Technology Platform server.

Add one or more users as follows: spectrum.security.authentication.internal.users=user1,user2,user3

If someone tries to log in as "admin," and the admin user is not defined through this property, Spectrum will attempt to authenticate against LDAP, where that user may not exist. If you want to enforce external authentication through LDAP/AD FS, leave this property blank.