|
|
|
The attributes that are displayed in the Where fields are determined by the search.properties presentation file. The search.properties file contains entries for the attributes associated with organizations, users, and groups. Each entry identifies an attribute and specifies which type of Registration Services administrators can search on that attribute. The entries have the following format:
IDENTIFIER=Administrative role:R
Identifies the attribute.
The identifier must match identifiers in the object and locale properties files. The object properties file maps the identifier to an attribute in your LDAP directory. The locale properties file maps the identifier to a text string, which is displayed in the drop-down list in the Where field.
Is a comma-delimited list of administrative roles. By default, only Super Administrators and Organization Administrators can search for managed objects. The default list contains the following roles:
Indicates Super Administrators
Indicates Organization Administrators
Indicates that the attribute is visible (and therefore, searchable) for users who have the corresponding role.
For example:
TITLE_ID=Admin:R,OrgAdmin:R
In this case, the Title attribute is visible in the list of searchable attributes that is displayed for Super Administrators and Organization Administrators. Both types of administrators can search on a user’s title.
You can change the displayed attributes based on the administrator’s role by adding or removing the R. For example, you may only want to allow Super Administrators to search for users based on their title. In this case, you would remove the R that is paired with OrgAdmin for TITLE_ID as follows:
TITLE_ID=Admin:R,OrgAdmin
Note: Restart the servlet engine that Registration Services is using for changes to the properties files to take effect.
| Copyright © 2011 CA. All rights reserved. | Email CA Technologies about this topic |