Skip to content
Eptura
Feedback by UserVoice
← Archibus

How can we improve Archibus?

Archibus: Platform

Categories

JUMP TO ANOTHER FORUM

(thinking…)

mixed user login

LDAP and Non LDAP mixed user setup

It would be good to be able to support a mix login feature to allow for both staff and contractors to get access to ARCHIBUS.

Often we have clients that need to have a SSO or LDAP solution for the majority of internal staff users, however often within a building we have, non staff and contractors that need to access ARCHIBUS to either report a problem, manage tasks assigned to them (work requests or assessments). or room bookings etc.

Currently there is no option to be able to offer this (unless I'm missing something).

If using the LDAP route (user still enters a user name and password) maybe a toggle selection to say your staff or non staff and ARCHIBUS will provide the required security checks for access.

SSO could check if current user has active user account if not displayed the log in screen for internal Archibus authentication.

There are a number of use cases that we have where clients would benefit from the ability to have mixed login functionality.

34 votes

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We’ll send you updates on this idea

ashley.nuttall shared this idea  ·   ·  Admin →
How important is this to you?

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment
  • Daniel Neamtu commented  · 

    If you use Shibboleth Service Provider for SSO, it's possible to configure the Identity Provider for mixed authentication. This approach provides the highest level of flexibility.

  • mray@absolute-fs.com commented  · 

    Customer IT departments are not interested in setting up multiple instances of tomcat. Modern systems do not require organizations to build a server to run multiple instances or build multiple servers, just so they can get technical support. Plus the license then becomes the issue. If someone has a better workaround that's great, but now customers have to pay extra to get Archibus to work the way most applications do/should?

  • Stephen commented  · 

    We currently have a customisation for mixed LDAP non LDAP There are several organisation in my visibility that have customised this. It is good for us because we can trouble shoot a user issue by switching the user back to non LDAP and log in with a generic password to see what the issue is. Our customisation uses a single instance of Tomcat. Multiple Instances of Tomcat means multiple administrative effort.

  • spogoloff commented  · 

    Good idea, but there is a workaround: two Tomcats and use symbolic links to point to the same folders. But you have to get Archibus to split the ACP's to prevent cheating the license.