8-46
UserGuide for Cisco Digital Media Manager5.4.x
OL-15762-05
Chapter8 Authentication and Federated Identity
Reference
Elements to Choose and Enable an Authentication Mode
Navigation Path
Administration > Security > Authentication > Select Mode
Table8-1 Elements for Authentication Modes
Element Description
Authentication Mode Area
Embedded Requires users who log in to DMM to authenticate against a user account database that is native
to DMM. This database is independent of every other type of authentication that you might use
in your network.
LDAP Automatically deletes all user accounts except superuser. Requires future users to authenticate
against the user account data from your Active Directory server when they log in to DMM.
Microsoft ActiveDirectory is the only LDAP implementation that we support in this release.
Federation Automatically deletes all user accounts except superuser. Requires future users to authenticate
themselves to your IdP when they log in to DMM.
Federation Mode Elements Area
Last Successfully
Configured IdP
This value becomes populated for the first time after you
succeed
at least once in importing
configuration metadata into DMM from your IdP.
This element is visible in federationmode only.
IdP Configuration File Provides the means to import configuration metadata that you previously exported from your
IdP and saved to a file. Click Import to browse for the file, which you can thenimport.
This element is visible in federationmode only.
Last Configured IdP (CSCtn15472) While it names an IdP explicitly, this value does not necessarily identify the
IdP in current use. Instead, this value describes only your most recent attempt to import
configuration metadata from an IdP, without regard for whether the attempt failed
or succeeded.
This element is visible only in federationmode. It becomes populated for the first time after
you attempt at least once to import IdP metadata.
Tip Compare this value to the “Last Successfully Configured IdP” value. When they differ, you know that
your latest such attempt actually failed.
(SP Configuration File)
Export
Provides the means to export configuration metadata from DMM. Click Export to begin
browsing for a folder on a locally mounted drive where you can save the exported config file.
Later, you will import this file into your IdP.
This element is visible in federationmode only.
Enable Authentication
Test
Helps you to test whether your federation mode settings are correct and will allow SSO for your
ordinary users.
Check this check box to expose UI elements that are otherwise hidden. Clear this check box to
hide such elements.
Test Username Enter a username that your IdP already knows. Do not use the superuser username. This
element is visible only while the Enable Authentication Test check box is checked.