beautypg.com

Ldap failover server properties, Viewing ldap schema properties section, Ldap schema properties section components – HP Secure Key Manager User Manual

Page 240: Ldap failover server properties section components

background image

Figure 133 Viewing LDAP Schema Properties section

Table 114 LDAP Schema Properties section components

Description

Component

The base distinguished name (DN) from which to begin the search for usernames.

User Base DN

The attribute type for the user on which to search. The attribute type you choose must
result in globally unique users.

User ID Attribute

Used to identify records of users that can be used for authentication.

User Object Class

Used for narrowing the search within the object class.

User List Filter

The Search Scope determines how deep within the LDAP user directory the system
searches for a user.

One Level: search only the children of the base node

Sub Tree: search all the descendents of the base node. Depending on the size of
your LDAP directory, this can be very inefficient.

NOTE:

The LDAP protocol supports four search scopes: base, onelevel, subtree and
children. You can specify only onelevel and subtree at this time. Note that subtree
includes base and children, so by specifying subtree, the search scope includes
subtree, base, and children.

Search Scope

Click to modify the properties.

Edit

Click to remove the current properties.

Clear

LDAP Failover Server Properties

Use the LDAP Failover Server Properties section to define a backup LDAP server to use in case the
main LDAP server becomes inaccessible due to a non-timeout error. When the primary LDAP server
is down, the SKM appliance shifts to the failover LDAP server and periodically retries the main server
to see if it has become accessible again.

Figure 134 Viewing the LDAP Failover Server Properties section

Table 115 LDAP Failover Server Properties section components

Description

Component

The hostname or IP address of the LDAP server to use as the failover.

Failover Hostname
or IP Address

The port on which the LDAP server is listening.

Failover Port

Using the Management Console

240