PingDirectory

Configuring basic authentication

Disable or enable basic authentication and configure an identity mapper for basic authentication.

About this task

By default, basic authentication is enabled. The settings are configured in the Consent HTTP Servlet Extension configuration.

All of these configuration changes require the Consent servlet to be reloaded before they can take effect. To do this, see the last step.

Steps

  • To disable basic authentication, use the following command.

    Example:

    $ bin/dsconfig set-http-servlet-extension-prop \
  --extension-name Consent \
  --set basic-auth-enabled:false

  • To enable basic authentication, use the following command.

    Example:

    $ bin/dsconfig set-http-servlet-extension-prop \
  --extension-name Consent \
  --set basic-auth-enabled:true

  • To configure an identity mapper for basic authentication, use the following command.

    Example:

    $ bin/dsconfig set-http-servlet-extension-prop \
  --extension-name Consent \
  --set "identity-mapper:User ID Exact Match"

  • To restart the connection handler that hosts the Consent servlet, use the following commands.

    Example:

    $ bin/dsconfig set-connection-handler-prop \
  --handler-name "HTTPS Connection Handler" \
  --set enabled:false
    $ bin/dsconfig set-connection-handler-prop \
  --handler-name "HTTPS Connection Handler" \
  --set enabled:true