LDAP

Frequently Asked Questions on LDAP Integration

1.How do I login by another field instead of an email address? 

Your company may want to have users login using some value other than their email address. For example, if you have your LPAD configured and want your users to login using their another value, say their "userid" (see picture below)

 For the configuration above, you would use the following settings in portlal-ext. properties

    ldap.auth.enabled=true
    ldap.auth.required=true

    company.security.auth.type=screenName
    ldap.auth.search.filter=(uid=@screen_name@)

ldap.user.mappings=screenName=uid\npassword=

userPassword\nemailAddress=

mail\nfirstName=givenName\nlastName=sn\njobTitle=

title\ngroup=groupMembership 

ldap.user.default.object.classes=

top,person,inetOrgPerson,organizationalPerson,account

This maps Liferay's "screenName" value to LDAP's "uid" value.
For example, lets say we have a user in LDAP with the userid of "112143134". Because of the properties (see above), when this user tries to log in, Liferay will try to find a user with a screenname of "112143134" using the specified search filter "(uid=@screen_name@)". When Liferay finds this user, it will import this user into Liferay according to the specified user mappings.

Or
You can do that from liferay administrative set up from the control pannel.