To log in to SAP Sybase IQ using LDAP user authentication, each user must have an active user ID and password on the external LDAP server as well as an active user ID on the SAP Sybase IQ server.
When creating a new user in SAP Sybase IQ, though not required, it is recommended that you specify a password to ensure that the new user account is not left unprotected until the first LDAP user authentication login.
The first time a new user logs on or an existing user logs in after a password change, the password in the SAP Sybase IQ database is automatically overwritten with the corresponding user password defined on the external LDAP server. Therefore, all maintenance required on SAP Sybase IQ passwords for user using LDAP user authentication should always be done on the external LDAP server, not the SAP Sybase IQ server.
As a result of this automatic password synchronization, for users granted the ability to use Standard authentication (the password defined in the SAP Sybase IQ database), when attempting to log on when using Standard authentication, they should continue to use their LDAP server credentials.