Preparing for a User Manager

After you install K2 with either Active Directory or SQL as the default user manager, you can configure more user managers. You can control which user managers can be used to log in to K2 by checking the Use for Login option on your claims issuer. If you only have one issuer marked as Use for Login, users logging into K2 do not have a choice for using a different user manager to login.
You can find information about configuring this in the in the K2 Management Claims and Issuers topics in the K2 User Guide.

The following default user managers are available during installation:

  • Active Directory
  • SQL

You can add other user managers after installation:

  • AAD
  • SQL
  • LDAP
  • ADFS
  • Custom

If you don't have AD in your environment you must select SQL as the user manager during installation and confirm credentials when prompted.

You can set a different user manager as the default for accessing sites like Workspace and the K2 Designer.

User Managers

 

AD

AAD ADFS

SQLUM

LDAP

Custom

Security Label – Default Value

K2

K2AAD K2ADFS

K2SQL

K2LDAP

{Custom}

Can be configured as default during installation?

Yes

No No

Yes

No

No

Can be configured as non-default post installation?

No

Yes Yes

Yes

Yes

Yes

Can be configured with multiple security labels?

No

No No

Yes

Yes+

Yes+

+ The LDAP User Manager implements two IHostableSecurityProviders .NET types - SourceCode.Security.Providers.LdapProvider.Forms.Ldap and SourceCode.Security.Providers.LdapProvider.Trusted.Ldap - each can only be configured for a single security label. Each custom user manager .NET type that implements IHostableSecurityProvider can only be configured for a single security label.
Only one security label can be registered for each user manager .NET type that implements IHostableSecurityProvider.