IBM Support

DB2 UDB support for LDAP

Question & Answer


Question

What uses of Lightweight Directory Access Protocol (LDAP) are supported by DB2?

Answer

Supported usage of LDAP with DB2 :

When DB2® is configured for use with LDAP directory services, each DB2 client is no longer required to store catalog information locally. Client applications search the LDAP directory for information required to connect to remote databases. This supported use of LDAP is described in the following Db2 documentation page:

Supported usage of LDAP plug-ins for authentication in versions 9.7 and up:

Starting in DB2 Version 9.7 GA, DB2 includes a plug-in that enables authentication using LDAP without going through the OS. This plug-in is shipped with DB2 and located in the instance directory. The location is documented on the following Db2 documentation page:


Supported usage of Transparent LDAP authentication for versions 9.5 and up:
Transparent LDAP authentication allows users to authenticate through the OS using LDAP without having to first configure the LDAP plug-in. Transparent LDAP authentication is supported on AIX starting in Version 9.5 Fix Pack 4, Version 9.7 GA and up. Transparent LDAP authentication is supported on Sun, HP, and Linux starting in DB2 Version 9.5 Fix Pack 5, DB2 Version 9.7 Fix Pack 1, DB2 Version 10.1 GA and up. See the following documentation pages for instructions on configuring Transparent LDAP.

Third party and custom authentication plug-in support for versions 8.2, 9.x and 10.x:

Starting with DB2 UDB Version 8.2, it is possible to customize the DB2 UDB security system's user ID and password authentication behavior. This is done by using a plug-in and using DB2's authentication plug-in functionality. You can develop your own user ID and password authentication plug-in or buy one from a third party. DB2 supports the ability to use a custom plug-in, however the plug-in code itself is not supported. Issues with the actual plug-in code should be investigated by the plug-in vendor, or creator. Some sample plug-in source code can be found in the directory ~/sqllib/samples/security/plugins.

[{"Type":"MASTER","Line of Business":{"code":"LOB10","label":"Data and AI"},"Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Product":{"code":"SSEPGG","label":"Db2 for Linux, UNIX and Windows"},"ARM Category":[{"code":"a8m500000008PkuAAE","label":"Security and Plug-Ins"}],"ARM Case Number":"","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF010","label":"HP-UX"},{"code":"PF016","label":"Linux"},{"code":"PF027","label":"Solaris"},{"code":"PF033","label":"Windows"}],"Version":"All Versions"}]

Document Information

Modified date:
02 February 2022

UID

swg21066328