Administrator Server Configuration: Edit LDAP Authentication Realm
Field | Description |
---|---|
Bind DN Name | The superuser's distinguished name or superuser's name to be used to connect to the server.
Default: uid=Manager,ou=people,dc=example,dc=com |
Password | LDAP server password.
Default: None |
Context Factory | The factory object that provides the starting point for resolution of names within the LDAP server.
Default: com.sun.jndi.ldap.LdapCtxFactory |
Machine Name Port List | Comma-separated list of URLs for an LDAP server. To achieve fault tolerance, you can specify multiple URLs. For example:
ldap://server1.example.com:686,ldap://server2.example.com:1686 Default: machineName:389, where machinename is the machine on which TIBCO Configuration Tool is being executed. |
Fetch DN | Retrieves the base DN of the LDAP server. |
User Search Configuration | |
User Search Base DN | Base distinguished name from which the search starts.
Default: ou=people,ou=na,dc=example,dc=org |
User Search Expression | The expression used for searching a user. For example: (CN=%U). "%U" is replaced by the username being searched for. You can define any complex filter such as (&(cn=%U)(objectClass=account)).
Default: (&(uid={0})(objectclass=person)) |
User Attribute with User Name | The name of the attribute in the user object that contains the user's name.
Default: uid |
Search Timeout (ms) | The time to wait for a response from the LDAP directory server.
Default: 30000 |
Follow Referrals | Whether to follow LDAP referrals. When selected, requests to LDAP can be redirected to another server.
Select this field to indicate that the LDAP information might be available at another location, or possibly at another server or servers. |
Field | Description |
---|---|
LDAP Realm | |
User Search Scope Subtree | Select to have the search include the entire subtree starting at the base DN. Otherwise, search only the nodes one level below the base DN.
Default: Selected. |
Security Authentication |
Value of Simple Authentication and Security Layer (SASL) authentication protocol to use. Values are implementation-dependent. Some possible values are simple, none, strong. Default: simple. |
LDAP Authentication | |
User DN Template (optional) | Template by which the User DN, used to connect to the LDAP server, is generated. Because the full DN is always supplied, the template should always be 0 (zero).
Default: uid={0},ou=people,ou=na,dc=org. |
User Attributes Extra (optional) | List of user attributes to retrieve from the LDAP directory during authentication.
Default: Empty (no additional attributes will be retrieved for the user). |
LDAP Server is SSL Enabled | Select to enable the LDAP server for SSL. When selected, the SSL Keystore Configuration fields are enabled.
Default: Cleared. |
Test Connection | Click the Test Connection button to ensure that you can connect to the LDAP database. |