Question

LDAP authentication configuration on PDC

Hi Team,

We have PDC instance for our project and need to setup LDAP authentication on PDC, so that we can login to PDC with our LDAP credentials.

Please help with the process involved and implementation guidance to achieve this requirement.

Thanks in advance!

***Edited by Moderator: Lochan to tag SR***

Group Tags

Comments

Keep up to date on this post and subscribe to comments

July 26, 2019 - 9:40am

Not sure I understand your request here. PDC is already coming with SAML SSO login, you do not have to anything except just pointing your monitored pega instances to the given URL. Are you talking about your own hosted AES (old name for PDC)? Please elaborate.

July 29, 2019 - 1:26am
Response to KevinZheng_GCS

Thanks Kevin!

SAML SSO seems a good approach to address our requirement, is it preconfigured in Pega ? and is it IDP or SP initiated?

Please help with any document/article to configure the SAML for PDC.

 

July 29, 2019 - 7:01am
Response to KevinZheng_GCS

One more point to add here that the current SSO with PDC is working only for PDN accounts, so I have to login to my PDN account and only then I can launch the PDC URL. However in our requirement we will login in our Pega internal app and it should be enough to launch PDC without asking to login again.

 

July 29, 2019 - 7:59am

this is quite different requirement as Pega PDC is completely independent of your own internal Pega apps. You essentially asks Pega PDC grants access to operators not in PDC. Suggest you contact PDC team for potential enhancement.

July 29, 2019 - 8:37am
Response to KevinZheng_GCS

Thanks Kevin! I presume we have to raise an SR for further support.

July 29, 2019 - 9:15am
Response to KevinZheng_GCS

Created SR (SR-D34321 )

Mod
July 29, 2019 - 9:15am

Tagging Andy Werden to confirm if this enhancement is feasible. @WERDA

Lochana | Community Moderator | Pegasystems Inc.

July 29, 2019 - 9:21am
Response to Lochan_DV

Hi Lochan,

We need this enhancement since PDN account can be accessed globally, hence we would like to limit the PDC access to only internal users within the organization. Also without this enhancement we may have a security violation at times when users leaving the organization would still have their PDN accounts active to access PDC until we revoke their access.

Thanks!

Pega
July 29, 2019 - 9:40am

 

We have started "BYOSSO" - configuring PDC to work with your own SAML IDP. This is not customer-configurable at present. The PDC team will work with you to set up the credentials and the redirection. Are you using LDAP authentication or SAML currently? Is your SAML IDP accessible from public internet? What is your PDC Tenant ID / code?

To all on the thread … yes, PDC already has two SAML SSO authentication options enabled by default for all tenants. (1) Integration with Pega Community / My Support Portal  (2) Integration with Pega rpega.com active directory [for Pega Support and other teams to assist customers].  We can configure additional customer-specific SAML authentication services.

One note - "BYOSSO" is new and we're not SAML experts, so we'd rather you start with a known working SAML authentication service.