Previous Topic: DatabasesNext Topic: Email

Configuration TabMapping for Configuration Browser TabsModulesDirectory Services

Directory Services

The Directory Services operator category configuration specifies default property settings for Directory Services operators.

Note: For information about configuring default property settings for directory services, see the Content Administrator Guide. For operator-level details, see the Content Designer Reference.

Default Directory Services Configuration

Sets the default values for the Directory Services properties on an interface that supports Microsoft Active Directory and other LDAP directory services.

Batch Size

Defines the default batch size for returning the operation results so the server can optimize performance and resources.

Values: This property can have one of the following values:

  • 0 - The server specifies the batch size.
  • A whole number in the range 1 through 10000.

Default: 10

Max Number of Search Results

Defines the maximum number of objects the product returns when you run one of the following Directory Services operators:

  • Get Object
  • Get User

Values: This value can be a whole number in the range 1 through 1000.

Default: 100

Factory Initial

Defines the fully qualified class name of the factory class that creates an initial context.

Default: com.sun.jndi.ldap.LdapCtxFactory

Factory State

Defines a colon-separated list of fully qualified state factory class names that can get the state of a specified object. Leave this field blank to use the default state factory classes.

Factory Object

Defines a colon-separated list of the fully qualified class names of factory classes that create an object from information about the object. Leave this field blank to use the default object factory classes.

Language

Defines a colon-separated list of language tags (the tags are defined in RFC 1766). Leave this field blank to let the LDAP server determine the language preference.

Referral

Specifies how the LDAP server handles referrals.

Values: This property can have one of the following values:

  • Ignore - The LDAP server ignores referrals.
  • Follow - The LDAP server follows referrals.
  • Throw - The LDAP server returns the first encountered referral and then stops the search.

Default: Ignore

Security Authentication

Defines the authentication mechanisms for the LDAP server.

Values: This property can have one of the following values:

  • Blank - The LDAP server uses no authentication (anonymous). Verify that the LDAP server supports anonymous connections.

    Note: This setting limits the LDAP operator. CA Process Automation creates an anonymous connection with the LDAP server. User login credentials are ignored.

  • Simple - The LDAP server uses weak authentication (a clear-text password). Select this option when you set the Security Protocol to SSL.
  • A space-separated SASL mechanism list - The LDAP server supports any type of authentication agreed on by the LDAP client and server. Enter a space-separated Simple Authentication and Security Layer (SASL) mechanism list (RFC 2222).
Security Protocol

Specifies whether to use a secure connection.

Values: This property can have one of the following values:

  • SSL - The connection is secure. The SSL protocol permits LDAP server connections through a secure socket.

Important! If you are connecting to Active Directory (AD), type ssl in lower case. AD rejects the value SSL.

  • Blank - The connection is basic (that is, it is not secure).
Connection Timeout

Defines the connection timeout value, in seconds.

Values: This property can have one of the following values:

  • 0 - No timeout.
  • A whole number in the range 1 through 600.

Default: 60

LDAP Server

Defines the default LDAP server URL or IP address.

LDAP Server Port

Defines the default LDAP server port.

Values: This property can have one of the following values:

  • 389 - The Lightweight Directory Access Protocol (LDAP) port.
  • 636 - The port for the LDAP protocol over TLS/SSL.
  • Another valid port.
  • Blank - The LDAP server port must be specified at the operator level.

Default: Blank

LDAP User

Defines the name for the default LDAP user. Operators can use this default or can override it.

Password for LDAP User

Defines the password that is associated with the specified default LDAP user. Operators can use this default or can override it.

Base DN

Defines the default Base Distinguished Name (DN) at which the LDAP user is located. Operators can use this default or can override it.

User Prefix

Specifies the default user prefix. Use the value that reflects how your LDAP server stores user names. For example, uid=user-name,ou=people,o=mycompany or cn=distinguished-name,ou=people,o=mycompany

Values: This property can have one of the following values:

  • uid - The LDAP server uses unique user identifiers.
  • cn - The LDAP server uses a common name for all users. If duplicate names exist, selecting this value could cause issues.

Default: uid