WAS v8.5 > Reference > Sets

LDAP entity types page

Use this page to list LDAP entity types that are supported by the member repositories or to select an LDAP entity type to view or change its configuration properties.

To view this dmgr console page...

  1. In the dmgr console, click Security > Global security.

  2. Under User account repository, select Federated repositories from the Available realm definitions field and click Configure. To configure for a specific domain in a multiple security domain environment, click Security domains > domain_name. Under Security Attributes, expand User Realm, and click Customize for this domain. Select the Realm type as Federated repositories and then click Configure.

  3. Under Related items, click Manage repositories.

  4. Click Add to specify a new external repository or select an external repository that is preconfigured.

  5. Under Additional properties, click LDAP entity types.

When you finish adding or updating your federated repository configuration, go to the Security > Global security panel and click Apply to validate the changes.


Entity type

Entity type name.


Object classes

Object classes that are mapped to this entity type. LDAP entries containing one or more of the object classes belong to this entity type.

We cannot map multiple entity types to the same LDAP object class.


Search bases

Search bases used to search this entity type.

The search bases specified must be subtrees of the base entry in the repository. For example, we can specify the following search bases, where o=ibm,c=us is the base entry in the repository:

o=ibm,c=us or cn=users,o=ibm,c=us or ou=austin,o=ibm,c=us

In the preceding example, we cannot specify search bases c=us or o=ibm,c=uk.

Delimit multiple search bases with a semicolon (;). For example:

ou=austin,o=ibm,c=us;ou=raleigh,o=ibm,c=us


Search filter

Specifies the LDAP search filter used to search this entity type.

For example, use (objectclass=ePerson) to search for users or (&(cn=%v)(|(objectclass=groupOfNames)(objectclass=groupOfUniqueNames))) to search for groups in an external LDAP repository.

If a search filter is not specified, the object classes and the relative distinguished name (RDN ) properties are used to generate the search filter.


Reference:

LDAP entity types settings


+

Search Tips   |   Advanced Search