Using External Authentication

Every organization in AtScale requires a directory service for managing AtScale users. For evaluation purposes AtScale uses its own embedded directory service. However, production installations must use an external directory service. To manage user authentication through an external directory service, you need to:

Configure AtScale to connect to the external directory, like LDAP server, Azure Active Directory, or Google's G Suite Directory
Assign AtScale roles to directory groups, grant runtime permissions on cubes to directory groups, and synchronize the user accounts to AtScale.
Disable user management in AtScale. When managing users in AtScale you cannot write to external directory services.

Before you start

Note the following:

Use AtScale's local directory service for testing only. Do not use it in production environments.
This directory service is not meant to support the types of workloads that are common to production environments. Before using AtScale in production, configure your AtScale organization to use an external directory service, such as Microsoft Active Directory, another LDAP service, or Google G Suite Directory.
When you are administering user access and security for an AtScale cluster, you must use an external directory service.

Using External Authentication

Before you start

More information