다음 realms.xml 예는 SSL을 통해 IBM Directory Server에 사용하도록 LDAP 속성을 구성하는 방식을 보여 줍니다.
참고: 다음 코드 샘플은 예시용으로만 제공되며 각 사이트의 LDAP 서버는 고유하게 구성됩니다.
<?xml version="1.0" encoding="UTF-8"?>
<realms xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" version="0.1" xsi:noNamespaceSchemaLocation="realms0.1.xsd">
<realm active="true" descriptor="LDAP Realm" id="LDAP">
<property name="url">
<value>ldap://machine01.co.com:123</value>
</property>
<property name="serverCertificate">
<value/>
</property>
<property name="bindPassword">
<value>jon</value>
</property>
<property name="useSSL">
<value>false</value>
</property>
<property name="userObjectQuery">
<value>(&(objectClass=organizationalPerson)(cn={0})) </value>
</property>
<property name="groupNameAttribute">
<value>cn</value>
</property>
<property name="groupObjectQuery">
<value>(&(objectClass=organizationalUnit)(cn={0}))</value>
</property>
<property name="groupMemberQuery">
<value>(&(objectClass=groupofNames)(member={0}))</value>
</property>
<property name="bindAuthentication">
<value>simple</value>
</property>
<property name="bindName">
<value>cn=Jon Doe,ou=Groups,o=unitTest</value>
</property>
<property name="usernameAttribute">
<value>cn</value>
</property>
<property name="scopeDepth">
<value>subtree</value>
</property>
</realm>
</realms>
|
Copyright © 2013 CA.
All rights reserved.
|
|