Greetings,
We are integrating camunda with our LDAP management system, so any user who is accessing cockpit or tasklist should be part of LDAP only. Internal users created via admin/REST should be restricted. How to disable user creation via Admin or via REST?, so no internal users are created. Kindly advise.
Thanks
Rathinakarthik
Hi @rathina_karthik,
it is not possible to enter a user into your LDAP management system via Admin, as it use a readl only implementation:Identity Service | docs.camunda.org
Even if the add user buttons are still present.
Hope this helps, Ingo
@Ingo_Richtsmeier Thank you for your response. I got your reply that user will not be created in ldap. Our goal is our camunda bpm platform should have only users in our LDAP. Is there a way to turn off create user in admin or in REST, so no internal users created in camunda db.
POST /user/create
- we dont want this api to create users in camunda database. Anyways to turnoff or disable this api. Kindly advise.
Thanks
Rathinakarthik
Hi @rathina_karthik,
if you enable the LDAP plugin, it replaces the Database Identity Service.
You can remove the ACT_ID_* tables from the database.
The POST /user/create/
will repsond with 403: Create user | docs.camunda.org
Hope this helps, Ingo
1 Like
Thank you for your response , this helps. Will try out. Thank you again