Is it possible to have some developer users (the ones who register to get API keys etc) login to the Developer Portal via SSO/LDAP, and others who register independently and receive a username and password?
You could block the registering option in the settings and leave the login page available.
This way you will handle the registry of the users (with api calls to the dashboard) for regular users and they will be able to login the dev portal via the default login page and other users will be able to use an alternative login page that will redirect their creds to TIB and log them in after successfully validating against the LDAP server.
BTW, With TIB you can have any number of profiles to log your users in (oidc, ldap and each different servers and client_ids)
]TIB can have many profiles (in profiles.json or with TIB REST APIs. Since the definition of the LDAP is there, you can have different LDAP servers to authenticate against.
GroupA needs a login page that will send TIB post request with one profile, for instance “GroupALdap”
GroupB needs a login page that will send TIB post request with another profile, for instance “GroupBLdap”