Cloud-connected DMS with multiple authentication methods

Solved815 viewsauthentication AzureAD cloud-connection SAML
8
0 Comments

Hi,

How will authentication behave on a cloud-connected DMS - in which some nodes are configured for classic LDAP auth, and others configured for AzureAD/SAML auth?

Each user will link their Cloud account to a DataMiner user, either being an LDAP or AzureAD user, and let's imagine we cloud-connect all nodes.

From my understanding, a random node (CloudGateway) will each time be selected when we try to set up connection from the Cloud. In that case, will authentication only work if the selected node happens to be configured with the user's authentication type, or will that request always work?

If this would not work today, can we consider to provide a solution?

Thanks!

Marieke Goethals [SLC] [DevOps Catalyst] Selected answer as best 6th July 2023

1 Answer

7
5.36K 2 Comments

Hi Ruben

All users between the agents within the Cluster are synced so once the users link their DCP account with their DataMiner user it should not matter which node is selected later down the line.

Wkr

Marieke Goethals [SLC] [DevOps Catalyst] Selected answer as best 6th July 2023
Ruben Vandepitte [SLC] [DevOps Advocate] commented

Hi Baptiste.
Whenever a user logs in through Cube, they have to very deliberately consider which agent they use to access the system, as a single agent only allows 1 external authentication type (eg LDAP or AzureAD or Radius or …). So that’s why I assumed a problem might occur when a random cloud-connected agent is selected to set up the connection…
Baptiste Pattyn [SLC] [DevOps Enabler] commented

It should not give the user any trouble or random behaviour as we have a different way of opening the connection with the linked user.
You are viewing 1 out of 1 answers, click here to view all answers.