Replication Server and LDAP User Account Management

An LDAP administrator creates and maintains user accounts in the LDAP server.

A database administrator creates and maintains Replication Server users. Alternatively, the database administrator can choose administration options that provide flexibility with user accounts when integrating Replication Server with the LDAP user authentication. For example, the database administrator administers the Replication Server roles, default database, language, and other login-specific attributes using administration commands and procedures.

Configure LDAP user authentication by setting the user_authentication_source parameter and the LDAP URL.

Updates to rs_users if LDAP Authentication Is Enabled
Existing User in rs_users?	User Authenticated by LDAP?	Update to rs_users
No	Yes	Login fails. No change to `rs_users`.
No	No	Login fails. No change to `rs_users`.
Yes	Yes	Login successful. Update `rs_users` with the authenticated password.
Yes	No	If user exists in LDAP – login fails. No change to `rs_users`. If user does not exist in LDAP – login either fails or falls back to `rs_users` for decision with no changes.