Connection Properties
- Gunjan Tulwani (Unlicensed)
This section covers the properties that need to be configured in order to successfully connect to LDAP Server and perform bind & search operations on LDAP Server.
The values of the following properties depend on your LDAP Server. Refer the Sample or Possible Values field of the table below for examples.
Property Name | Property Description | Sample or Possible Values |
| abpm.ldap.enableLdap | Configurable option to enable or disable LDAP authentication in Adeptia Suite. | yes | no, true | false |
abpm.ldap.provider.url | Provider URL to connect to LDAP Server. | ldap://serverName:389 |
abpm.ldap.naming.factory.intial | JNDI initial context factory required for LDAP authentication. | com.sun.jndi.ldap.LdapCtxFactory |
abpm.ldap.security.authentication | Mode for LDAP security authentication. | none | simple | sasl_mech |
abpm.ldap.searchScopeLevel | Search scope level. | One | Object | Subtree |
abpm.ldap.enableLdapOverSSL | Configurable option to enable or disable LDAP connection over SSL. | yes | no, true | false |
abpm.ldap.SearchTimeout | Timeout in seconds for LDAP search operations. | 60 |
abpm.ldap.ServerTimeout | Read timeout in seconds for LDAP operations. | 60 |
abpm.ldap.bindDN | The DN used to bind against the LDAP server for the user and roles queries. |
|
abpm.ldap.bindCredential | The password for the bindDN. | xxxxxxx |
abpm.ldap.baseContextDN | The fixed DN of the context to start the user search from. |
|
abpm.ldap.baseFilter | A search filter used to locate the context of the user to authenticate. The input username as obtained from the login module callback will be substituted into the filter anywhere a "{0}" expression is seen. |
|
abpm.ldap.rolesContextDN | The fixed DN of the context to search for user roles. For Active Directory, this is the DN where the user account is. |
|
abpm.ldap.roleFilter | A search filter used to locate the roles associated with the authenticated user. The input username as obtained from |
|
abpm.ldap.roleAttributeID | The name of the role attribute of the context which corresponds to the name of the role. If the roleAttributeIsDN property is set to true, this property is the DN of the context to query for the roleNameAttributeID attribute. If the roleAttributeIsDN property is set to false, this property is the attribute name of the role name. | cn |
abpm.ldap.roleAttributeIsDN | A flag indicating whether the user's role attribute contains the fully distinguished name of a role object, or the user's role attribute contains the role name. If false, the role name is taken from the value of the user's role attribute. If true, the role attribute represents the distinguished name of a role object. The role name is taken from the value of the roleNameAttributeId attribute of the corresponding object. The default value of this property is false. | yes | no, true | false |
abpm.ldap.roleNameAttributeID | The name of the role attribute of the context which corresponds to the name of the role. If the roleAttributeIsDN | cn |
abpm.ldap.roleDN.searchRoleNameAttributeID | Configurable option to enable or disable searching role name attribute in user's distinguished name. | yes | no, true | false |
abpm.ldap.roleRecursion | Specifies how deep the role search will Go below a given matching context. Disable with 0, which is the default. | 0 |
abpm.ldap.enable.anonymous.login | Configurable option to enable or disable anonymous login through blank password in LDAP. | yes | no, true | false |