SIMATIC WinCC Open Architecture Forum

Hi,

¿Has anyone here some experience implementing LDAP authentication using OaAuthMethodUserdefined class? Documentation is really very sparse, and it only covers the very basic of what to do.

My problem is not how to implement the basic password authentication mechanism via LDAP, this is something I know how to do and where. By doubts are instead on how to make the whole user authentication chain work, specially the following (after digging into implementation for AD authentication):

• when to create or not the user in WinCCOA

• how to map user groups retrieved from LDAP into WinCC-OAuser groups

My idea is to have a WinCCOA project deployed with two groups defined ('operators' and 'admins'), then perform all user management (this is, what users/passwords exist on the system and which groups each user belongs to) via the LDAP system. WinCCOA should authenticate users through the LDAP, then map them to the appropriate groups based on the information retrieved from LDAP.