LDAP server properties

LDAP server properties

LDAP server properties define the properties used by the directory server in which IBM Security Identity Manager stores data..
Properties used the directory server.

enrole.ldapserver.root

Top-level entry node of the directory server data structure (dc=domain control). Use the ldapConfig utility to modify this value.
This value is specified during installation of IBM Security Identity Manager.

Example (default).
enrole.ldapserver.root=dc=com

enrole.ldapserver.home

Do not modify this property key and value.

Location of the system configuration information in the directory server.

Example (default).
enrole.ldapserver.home=ou=itim

enrole.ldapserver.agelimit

Do not change this property key and value unless you are a qualified administrator. Use therunConfig utility to modify this value.
Specifies the number of days that an object remains in the recycle bin before it can be deleted when the cleanup script is started. The recycle bin age limit protects objects in the recycle bin from cleanup scripts for the specified length of time.

Cleanup scripts can remove only those objects that are older than the age limit setting. If the age limit setting is 62 days (default), only objects in the recycle bin for more than 62 days can be deleted by starting the cleanup script.

Example (default).
enrole.ldapserver.agelimit=62

enrole.ldapserver.ditlayout

Do not modify this property key and value.

Java™ class that defines the structure of the data that is stored in the directory server.

Example (default, flat structure).
enrole.ldapserver.ditlayout=com.ibm.itim.dataservices.dit.itim. FlatHashedLayout

enrole.ldap.provider

Example (default).
enrole.ldap.provider=IBM

Parent topic: System property configuration in enRole.properties

enrole.ldapserver.root
	Top-level entry node of the directory server data structure (dc=domain control). Use the ldapConfig utility to modify this value. This value is specified during installation of IBM Security Identity Manager. Example (default). enrole.ldapserver.root=dc=com
enrole.ldapserver.home
	Do not modify this property key and value. Location of the system configuration information in the directory server. Example (default). enrole.ldapserver.home=ou=itim
enrole.ldapserver.agelimit
	Do not change this property key and value unless you are a qualified administrator. Use therunConfig utility to modify this value. Specifies the number of days that an object remains in the recycle bin before it can be deleted when the cleanup script is started. The recycle bin age limit protects objects in the recycle bin from cleanup scripts for the specified length of time. Cleanup scripts can remove only those objects that are older than the age limit setting. If the age limit setting is 62 days (default), only objects in the recycle bin for more than 62 days can be deleted by starting the cleanup script. Example (default). enrole.ldapserver.agelimit=62
enrole.ldapserver.ditlayout
	Do not modify this property key and value. Java™ class that defines the structure of the data that is stored in the directory server. Example (default, flat structure). enrole.ldapserver.ditlayout=com.ibm.itim.dataservices.dit.itim. FlatHashedLayout
enrole.ldap.provider
	Example (default). enrole.ldap.provider=IBM