When you configure an external authentication mechanism, if there is exactly one mapping of an external user to an internal Adaptive Server login, and if it is successfully authenticated, Adaptive Server updates the internal login’s password to match the external user’s password. For example, under these conditions:
USER1 has an Adaptive Server login name of user_ase with password user_password. Another user has an LDAP login name of user_ldap with passworduser_ldappasswd
Adaptive Server has a one to one mapping for user_ldap to user_ase.
User user_ldap logs
in to Adaptive Server using password user_ldappasswd
Adaptive Server updates the user_ase password
to user_ldapppasswd.
In the following example, if you configure an external authentication mechanism by mapping an external user to an Adaptive Server internal login and the authentication fails over to Adaptive Server, you can log in with the external user name and correct Adaptive Server password. Adaptive Server internally uses the mapped internal login to authenticate the external user:
A user
has an Adaptive Server login name of user_ase with
password user_password
Another user has an LDAP login name of user_ldap
Adaptive Server maps user_ldap to user_ase
If you enable LDAP:
sp_configure 'enable ldap user auth', 1
If the LDAP server is shutdown or crashes, user_ldap can
log in to Adaptive Server using login name user_ldap and
password user_password.
