Just to give a basic overview, while defining an authentication service rule, you must have chosen a servlet name like "WebLDAP1" (something like below)
This servlet WebLDAP1 will have a corresponding URL param in prweb's web.xml as below
In order to use LDAP Authentication, you should be using the corresponding custom servlet's URL pattern likehttp://localhost:8080/prweb/PRWebLDAP1, this will show you the regular login page.
After you provide login credentials and submit, the request goes to the Auth service and the authentication service's AuthenticationLDAP activity does the look-up in specified LDAP directory to authenticate any user.
Now I'm facing the below error while trying to login into application using LDAPAuthentication.
2016-06-21 11:36:20,464 [fault (self-tuning)'] [ STANDARD] [ ] [ PegaRULES:07.10] ( internal.access.Saver) ERROR sz1064.app.gen.local|xxxxxxx - You are not authorized to save instance DATA-ADMIN-ORGUNIT !CM!S&I CIF FIX SOW ACCENTURE, of class Data-Admin-OrgUnit
Hi Guys, thanks for the info, suggestions & guidance. I'm able to trace Authentication related rules.
Here i have an issue. When I'm trying to authenticate into application via LDAP, I'm getting " You are not authorized to create, modify, or lock instance DATA-ADMIN-ORGUNIT " error while trying to save Data-Admin-OrgUnit record as per the client records.
This looks like a complete design requirement for me, even if you analyze/address one error, you may see a new error. Designing complete LDAP Authentication may require some expert assistance, were you able to seek Professional services help on this?
If all the configurations are in place w.r.t to LDAP authentication and if you feel product is behaving incorrectly, We would request you to raise one SR to get the collaborative assistance over the call/screen-share. There are quite a few things w.r.t to your LDAP setup which requires further validation in order to troubleshoot the errors.