XYGATE User Authentication Reference Manual

XYGATE

User Authentication

™

(XUA) 1.85 Reference Manual

Chapter 12. Configuring the LDAP Interface

XYPRO Technology Corporation 79 Proprietary and Confidential

TESTLDAP

The TESTLDAP file is the script that invokes the LDAPSRV in the interactive mode.

Refer to section 12.11, “Troubleshooting the XUA and LDAP Servers’ Communication”

starting on page 85 for more information.

LDAPPASS

The LDAPPASS file is an edit file created by the install program. If LDAP is configured

to do LOOKUP, then this file should have the password for the search user.

The LDAPPASS file needs to list a single- or multiple-userids used to logon to LDAP

with corresponding passwords. The user that is used to logon to perform the lookup is

specified in the keyword LDAP_SEARCH_USER. The password for this user needs to

be present in the LDAPPASS file.

Example - Contents of the file LDAPPASS:

"uid=ldap-7,dc=xypro,dc=com" "mypass"

"uid=ldap-6,dc=xypro,dc=com" "changeme"

If the keyword LDAP_GROUP appears in the LDAPPASS file, the entries below it

apply only to the specified LDAP Group, allowing two different LDAP groups to have

the same user but different passwords:

Example - Contents of LDAPPASS file when multiple LDAP group is configured:

"uid=ldap-1,dc=xypro,dc=com" "total"

LDAP_GROUP LD1

"uid=ldap-7,dc=xypro,dc=com" "mypass"

"uid=ldap-6,dc=xypro,dc=com" "changeme"

LDAP_GROUP LD2

"uid=ldap-4,dc=xypro,dc=com" "testxxx"

"uid=ldap-7,dc=xypro,dc=com" "secret"

"uid=ldap-6,dc=xypro,dc=com" "test123"