Liferay SSO with LDAP – Configuration & Flow Explained
Single Sign-On (SSO) with LDAP is a common enterprise requirement where user authentication and authorization are centralized in a directory service such as Active Directory or OpenLDAP . Liferay DXP provides native LDAP integration , allowing organizations to authenticate users using their corporate credentials. This blog explains how Liferay SSO with LDAP works , its configuration , and best practices . 🔹 1. What Is LDAP SSO in Liferay? LDAP (Lightweight Directory Access Protocol) is a directory service used to store: Users Groups Roles Organizational units With LDAP SSO , users: Log in once using LDAP credentials Access Liferay without creating separate passwords Are automatically synced into Liferay 👉 Liferay does not store passwords locally when LDAP authentication is enabled. 🔹 2. Liferay LDAP SSO Architecture Authentication Flow User enters credentials on Liferay login page Liferay forwards credentials to LDAP LDAP validate...