Setting up Ldap Authentication
Security requirements for your production environment:
- DELETE the admin default account shipped by OM in case you had Basic Authentication enabled before configuring the authentication with Auth0 SSO.
- UPDATE the Private / Public keys used for the JWT Tokens. The keys we provide by default are aimed only for quickstart and testing purposes. They should NEVER be used in a production installation.
OpenMetadata allows using LDAP for validating email and password authentication. Once setup successfully, the user should be able to sign in to OpenMetadata using the Ldap credentials.
Below are the configuration types to set up the LDAP Authentication:
Docker Security
Configure LDAP for your Docker Deployment.
Bare Metal SecurityConfigure LDAP for your Bare Metal Deployment.
Metadata Ingestion
For ingesting metadata when LDAP is enabled, it is mandatory to configure the ingestion-bot
account with the JWT configuration. To know how to enable it, you can follow the documentation of Enable JWT Tokens.