Single authentication and user store for different customers

This topic contains 1 reply, has 1 voice, and was last updated by  pradeepgm 2 months, 1 week ago.

  • Author
    Posts
  • #25915
     pradeepgm 
    Participant

    Hi All,

    We have a requirement to use single openAM installation for multiple customers. Users from different customers may have a common username/uid but different customer name. Based on the recommendations from different forums we explored below options

    1. Keep all users from different customers in a single realm with OpenDJ authentication and data store
    Here the challenge is two users can not have a same uid. For example
    User 1: uid=user1, password=password, customername=cus1
    user 2: uid=user1, password=password1, customername=cus2

    Here though they have a same uid they can exist due to different customer names. Is there a way to have same uid for two different users but authenticate them based on uid and custom attribute combination? If yes, how do I achieve it in authentication and user search?
    I tried below suggestion but it is valid for separate realms with defined custom attribute values. In our case the customer name is dynamic like cus1, cust2 ….custn

    https://forum.forgerock.com/topic/how-to-restrict-users-to-a-realm/#post-3340

    2. Create separate realm for different customers
    We anticipate a challenge in maintaining the realms when the customer base grows.

    What is the best way to handle this?

    Thanks
    Pradeep

    #25922
     pradeepgm 
    Participant

    Can someone suggest here?

Viewing 2 posts - 1 through 2 (of 2 total)

You must be logged in to reply to this topic.

©2019 ForgeRock - we provide an identity and access platform to secure every online relationship for the enterprise market, educational sector and even entire countries. Click to view our privacy policy and terms of use.

Log in with your credentials

Forgot your details?