LDAP Authentication and strong password policy
Our objective is to connect Silk Central test manager platform on our corporate LDAP Directory which is based on the product ‘sun directory server directory 6.3’ (known nowadays as Oracle Directory Server 11g).
The LDAP directory enhance the password policy which force password expiration every 90 days and blocks accounts after several failed attempts.
SCTM v 13.0 doesn’t handle the error messages sent by the LDAP Directory when the password has expired or when the account is locked and therefore the user doesn’t get the reason why the authentication has failed ( “Vous avez entré un nom d'utilisateur ou un mot de passe invalide.”)
We would like an evolution of SCTM which will handles these specific error codes and print specific error message to the end user as specified as below :
Error code : Constraint violation (19)
Error detail : Exceed password retry limit. Account locked.
Message to expose to end-user : "Blocage temporaire : votre compte a été temporairement bloqué pour des raisons de sécurité. Merci de réessayer dans quelques minutes."
Error code : Invalid Credentials (49)
Error detail : Password Expired !
Message to expose to end-user : "Votre mot de passe a expiré. Merci de le modifier en cliquant sur le lien ci-dessous.*"
We are looking in to how improve integration. At present no scheduled release date but will provide update when fully reviewed
Per Östman commented
In addition, I would like to see an integration with LDAP that hands over authentication to the LDAP system entirely. I e if I choose to use LDAP, I would be able to manage SCTM access for the users in the LDAP system in SCTM without recreating them in SCTM.