Generic LDAP Server

To use any other LDAP server, select 'Generic' from the 'LDAP Server' menu under the 'Security Provider' page. (See Specifying a Security Provider information about the 'Security Provider' page.)

Figure 41. LDAP Environment Setup for Generic LDAP server

 

Note that a fully qualified name must be entered for the Administrator ID.

Table 8. Environment Setting Properties

Property Name

Description

Host Name

The host name of the server that is running the directory server.

Example: inetsoft.com

Port

The port number on which the directory server is

listening.

Example: 389

Root DN

The distinguished name [DN] of the root of the

directory server.

Example: dc=inetsoft,dc=com

Administrator ID

The distinguished name [DN] of the directory server administrator.

Example: cn=manager,dc=inetsoft,dc=com

Administrator Password

Directory server administrator's password.

Example: secret

Administrator Role

The name of the administrator role in the LDAP provider.

User Search Filter

The search filter used to find system users.

Example: (objectclass=person)

User Search Base

The base directory from which user searches will be performed.

Example: ou=People

User Attribute

The name of the attribute in the user entry that will be used as the user ID.

Example: uid

Group Search

Filter

The group search filter used to find system groups.

Example: (objectclass=organizationalunit)

Group Search Base

The base directory from which group searches will be performed.

Example: ou=People

Group Attribute

The name of the attribute in the group entry that will be used as the group ID.

Example: ou

Role Search Filter

The role search filter used to find system roles.

Example: (objectclass=groupofuniquenames)

Role Search Base

The base directory from which role searches will be performed.

Example: ou=Groups

Role Attribute

The name of the attribute in the role entry that will be used as the role ID.

Example: cn

User-Role Search Filter

The user-role search filter used to find the roles assigned to a specific user. This property is a standard LDAP search filter in which the string “{0}” will be replaced with the user ID.

Example:

(&(objectclass=groupofuniquenames)

(uniquemember=uid={0},*))

If using OpenLDAP, there are a few additional steps.

1. Copy {Install Directory}/lib/inetsoft.schema to

/etc/openldap/schema/

2. Edit /etc/openldap/slapd.conf to add the following line:

include /etc/openldap/schema/inetsoft.schema

<< Writing to the Active Directory Schema © 1996-2013 InetSoft Technology Corporation (v11.4) 6.1.4 Custom Security Integration >>