Parameters
The LDAP Simple Authentication Module parameters are listed in the following table.
| Parameter | Description |
|---|---|
| debug | When set to
true, enables debug output for the module. Enabling this parameter may aid in diagnosing configuration problems.
Warning: Enabling the debug flag may create security vulnerabilities by revealing information in the log file. The default setting is false. |
| tibems.ldap.operation_timeout | The timeout, in milliseconds, set for LDAP connect and LDAP read operations.
If not set, these two LDAP operations will follow their default behavior. |
| tibems.ldap.truststore | The key store that is used for TLS connections.
On Windows, the trust store must use forward slashes or escape backslashes when specifying a path. |
| tibems.ldap.url | The location of the LDAP server. Specify a single URL or comma-separated list of URLs. Each URL must use the format described by RFC 2255.
The server configuration can be defined as a single URL, or as a series of LDAP URLs representing the primary and backups servers. To configure a backup, provide a comma-separated list of URLs. For example: ldap://localhost:389,ldap://localhost:489 The servers are attempted in the order listed. Should the first server in the list be unavailable or fail, the next URL is tried. Any number of backup servers may be specified. The default is ldap://localhost:389. |
| tibems.ldap.user_pattern | The user pattern to use with simple LDAP authentication.
When a user pattern is supplied, the DN used for the lookup will be this pattern string entered here, with '%u' replaced with the name of the user. For example, uid=%u;ou=People. The default pattern is CN=%u. |