Using External Authentication to Manage User Access and Security
Every organization in AtScale requires a directory service for managing AtScale users. For evaluation purposes AtScale uses its own embedded directory service, however production installations must use an external directory service. To manage user authentication through an external directory service, you must configure AtScale to connect to it. AtScale supports LDAP servers, Microsoft Active Directory, Azure Active Directory, and Google's G Suite Directory.
You must also assign AtScale roles to directory groups, grant runtime permissions on cubes to directory groups, and synchronize the user accounts to AtScale.
If you choose to use an external directory service, you must disable user management in AtScale. As of version 7.3 AtScale no longer offers the option to write to external LDAP services when managing users.
Restriction: Use AtScale's local directory service for testing only. Do not use it in production environments. This directory service is not meant to support the types of workloads that are common to production environments. Before using AtScale in production, configure your AtScale organization to use an external directory service, such as Microsoft Active Directory, another LDAP service, or Google G Suite Directory.
Attention
Attention: When you are administering user access and security for an AtScale cluster, you must use an external directory service.