LDAPUserRegistry

Configuration to use when users and groups are defined in an LDAP directory service.

Inherits from type UserRegistry and adds the following.

Attributes Summary
type : LDAPDirectoryTypeThe type of LDAP server to which to connect.
sslEnabled : booleanWhether to enable Secure Socket Layer (SSL) communications between the application server security component and your LDAP directory service.
sslConfig : StringSpecifies the Secure Socket Layer configuration to use for the LDAP connection.
baseDN : StringSpecifies the base distinguished name of the directory service, indicating the starting point for LDAP searches of the directory service.
bindDN : StringSpecifies the distinguished name for application server to use to bind to the directory service.
bindPassword : PasswordSpecifies the password for the application server to use to bind to the directory service.
searchTimeout : longSpecifies the timeout value in seconds for an LDAP server to respond before aborting a request.
monitorInterval : longSpecifies the time interval in minutes to monitor the aliveness of LDAP server(s).
reuseConnection : booleanShould set to true by default to reuse the LDAP connection.
searchFilter : LDAPSearchFilterSettings for performing searches of the LDAP user registry.
hosts : EndPoint * Specifies one or more LDAP server host name and port.

Attribute Details

type    -    The type of LDAP server to which to connect.
     data type: LDAPDirectoryType
     default Value:   unspecified
     Allowed Values:  IBM_DIRECTORY_SERVER   SECUREWAY   IPLANET   NETSCAPE   DOMINO502   NDS   ACTIVE_DIRECTORY   CUSTOM  



sslEnabled    -    Whether to enable Secure Socket Layer (SSL) communications between the application server security component and your LDAP directory service. When this setting is enabled, the LDAP SSL settings are used if they are have been specified.
     data type: boolean
     default Value:   unspecified
     Allowed Values:  true   false  



sslConfig    -    Specifies the Secure Socket Layer configuration to use for the LDAP connection.
     data type:  String
     default Value:   unspecified



baseDN    -    Specifies the base distinguished name of the directory service, indicating the starting point for LDAP searches of the directory service. (See RFC 1779 for a discussion of this technique).Some examples include uid=anyusername, ou=people, and o=ibm. This field is required unless the product will be using a Domino directory service, in which case the administrator can leave the field blank to bind anonymously.The host name, port, and base DN you specify are combined to form an LDAP URL, such as ldap://myserver:1234/o=ibm, where myserver:1234 is the host name and optional port number for the directory service, and o=ibm is the base distinguished name.
     data type:  String
     default Value:   unspecified



bindDN    -    Specifies the distinguished name for application server to use to bind to the directory service. If no name is specfied, the application server binds anonymously. See the Base DN field description for examples of distinguished names.
     data type:  String
     default Value:   unspecified



bindPassword    -    Specifies the password for the application server to use to bind to the directory service.
     data type:  Password
     default Value:   unspecified



searchTimeout    -    Specifies the timeout value in seconds for an LDAP server to respond before aborting a request.
     data type:  long
     default Value:   unspecified



monitorInterval    -    Specifies the time interval in minutes to monitor the aliveness of LDAP server(s).
     data type:  long
     default Value:   unspecified



reuseConnection    -    Should set to true by default to reuse the LDAP connection. Set to false only in rare situations where a router is used to spray requests to multiple LDAP servers and when the router does not support affinity.
     data type: boolean
     default Value:   unspecified
     Allowed Values:  true   false  



searchFilter    -    Settings for performing searches of the LDAP user registry.
     data type: LDAPSearchFilter



hosts    -    Specifies one or more LDAP server host name and port.
     data type: EndPoint*


Copyright IBM Corp. 1997-2004