API Gateway 10.5
Use case is to create an API that authorizes incoming request against users who belong to a LDAP group that is configured in API Gateway. I have created a team containing the LDAP group and added the team in the List of Teams on the Authorize user policy.
On the Identify and Authorize Policy I have the condition type of OR
Identification Type: HTTP Basic Authentication
Application Lookup Condition : Global applications and defaultApplication
Allow Anonymous : False
The error message is: A violation of policy was detected: Unauthorized application request.
If I add the user in usermanagement it works, but we want to use LDAP to identify users not add thousands of users to API Gateway.