Configure LDAP attributes in federated repository
To add, modify, or delete the configuration of supported, unsupported, and external LDAP attributes in a federated repositories configuration...
- From the console, click...
-
Security | Global security
Select...
-
User account repository | Available realm definitions | Federated repositories | Configure | repository_id | Federated repositories property names to LDAP attributes mapping
To configure for a specific domain in a multiple security domain environment, click
-
Security domains | domain_name | Security Attributes | User Realm | Customize for this domain | Realm type | Federated repositories | Configure | Related items | Manage repositories | repository_id | Additional properties | LDAP attributes
- To add a new LDAP attribute configuration, click Add
Select one of the following options:
- Select Supported to add a supported LDAP attribute configuration.
On the panel that appears, enter the following details:
Name LDAP attribute used in the repository LDAP adapter. Property name Name of the corresponding federated repository property. Syntax Syntax of the LDAP attribute. The default value is string. For example, the syntax of the unicodePwd LDAP attribute is octetString. Entity types Entity type that applies the attribute mapping. Default value Default value of the LDAP attribute. Default attribute Default attribute of the LDAP attribute. - Select Unsupported to add a configuration for a federated repository property that the LDAP repository does not support. On the panel that appears, enter the following details:
Property name Name of the federated repository property. Entity types One or more entity types. Use the semicolon (;) as the delimiter to specify multiple entity types. - Select External to add a configuration for an LDAP attribute used as an external ID in the specified LDAP repository. On the panel that appears, enter the following details:
Name Name of the external ID attribute of the LDAP repository. Syntax Syntax of the LDAP attribute. The default value is string. For example, the syntax of the unicodePwd LDAP attribute is octetString. Entity types Specifies one or more entity types. Use the semicolon (;) as the delimiter to specify multiple entity types. Generate value Whether or not the federated repository should generate the value of the LDAP attribute.
- Select Supported to add a supported LDAP attribute configuration.
- To modify an existing configuration, click the Name/Property Name link and modify the details in the panel that appears.
- To delete an existing configuration, select the checkbox for the Name/Property Name and click Delete.
- Click OK and Save to the master configuration.
- Restart the application server.
Results
After completing these steps, LDAP attributes are configured in the federated repositories configuration.Subtopics
- Lightweight Directory Access Protocol entity types collection
Use this page to list LDAP entity types that are supported by the member repositories or to select an LDAP entity type to view or change its configuration properties. - Lightweight Directory Access Protocol entity types settings
Use this page to configure LDAP entity types that are supported by the member repositories. - LDAP attributes collection
Use this page to add, modify, or delete the configuration of supported, unsupported, and external LDAP attributes in a federated repositories configuration.