beautypg.com

HP Identity Driven Manager Software Series User Manual

Page 141

background image

3-73

Using Identity Driven Manager

Using the User Import Wizard

KERBEROS_AUTH_MODULE=IDMKerberos

// Kerberos authentication module name. If this entry is changed, you must also
change the module name in idm_kerberos_jass.conf file.

KERBEROS_JAAS_CONFIG_FILE=config/

idm_kerberos_jaas.conf

// configuration file for JAAS Kerberos

configuration.

}

} LDAP_DIRECTORY_CONFIG {

// Configuration for LDAP directory. Following values are for Active Directory. Change
as needed per object class and attributes in LDAP directory being used.

USER {

// User object

OBJECT_CLASS=User

// User object class

LOGON_NAME=sAMAccountName

// Login name attribute.

COMMON_NAME=cn

// Common Name attribute

DESCRIPTION=description

// User description attribute

DISPLAY_NAME=displayName

// User display name attribute

}

GROUP {

// Group object

OBJECT_CLASS=Group

// Object class for Group

COMMON_NAME=cn

// common name attribute

DESCRIPTION=description

// Group Description attribute

MEMBER=member

// Group member attribute

USER_MEMBER_ATTRIBUTE=cn

// User attribute used to link member users

from Group objects.

}

}

You would modify the LDAP_Server_Config section only if your LDAP
server is using other than the standard port (389). Similarly, if you select any
of

SASL

or

Kerberos

authentication methods, edit the related sections of the

config

file as needed to match custom configurations.

This manual is related to the following products: