HP Identity Driven Manager Software Series User Manual
Page 141
3-73
Using Identity Driven Manager
Using the User Import Wizard
KERBEROS_AUTH_MODULE=IDMKerberos
// Kerberos authentication module name. If this entry is changed, you must also
change the module name in idm_kerberos_jass.conf file.
KERBEROS_JAAS_CONFIG_FILE=config/
idm_kerberos_jaas.conf
// configuration file for JAAS Kerberos
configuration.
}
} LDAP_DIRECTORY_CONFIG {
// Configuration for LDAP directory. Following values are for Active Directory. Change
as needed per object class and attributes in LDAP directory being used.
USER {
// User object
OBJECT_CLASS=User
// User object class
LOGON_NAME=sAMAccountName
// Login name attribute.
COMMON_NAME=cn
// Common Name attribute
DESCRIPTION=description
// User description attribute
DISPLAY_NAME=displayName
// User display name attribute
}
GROUP {
// Group object
OBJECT_CLASS=Group
// Object class for Group
COMMON_NAME=cn
// common name attribute
DESCRIPTION=description
// Group Description attribute
MEMBER=member
// Group member attribute
USER_MEMBER_ATTRIBUTE=cn
// User attribute used to link member users
from Group objects.
}
}
You would modify the LDAP_Server_Config section only if your LDAP
server is using other than the standard port (389). Similarly, if you select any
of
SASL
or
Kerberos
authentication methods, edit the related sections of the
config
file as needed to match custom configurations.