XYGATE User Authentication Reference Manual

ManualsBrandsHP ManualsServerHP NonStop G-Series

241

242

243

244

245

246

247

248

249

250

XYGATE

User Authentication

™

(XUA) 1.85 Reference Manual

Appendix A: The UACONF File

XYPRO Technology Corporation 222 Proprietary and Confidential

A27: LDAP_DN_ATTRIBUTE

The value for this keyword is the attribute containing the name against which the

simple bind must be done.

Syntax:

LDAP_DN_ATTRIBUTE "<string>"

Example:

LDAP_DN_ATTRIBUTE "entrydn"

A28: LDAP_GROUP

The LDAP_GROUP keyword is used to group a set of LDAP-specific configuration

values when configuring multiple-LDAP authentication points. This keyword’s value

was created by the XUA_LDAP_INSTALL macro (refer to Item 11 in section 12.5) and

can be changed by editing the UACONF file after completing the macro run.

When multiple-LDAP authentication points are configured and a user is authenticating

via LDAP, the user can specify which authentication point to use by prefixing the

password response with:

<LDAP_GROUP_CHARACTERS string><LDAP_GROUP string><LDAP_GROUP_CHARACTERS string>

Syntax:

LDAP_GROUP <string>

Where <string>:

• Must contain at least one character.

• Can contain at most 50 characters. Additional characters are ignored.

• Is not case-sensitive.

• Cannot contain spaces. Any value after a space is encountered is ignored.

• Cannot start with the IMPERSONATION_GROUP characters for the number of

LDAP_GROUP_CHARACTERS defined, or 2, whichever is smaller.

• Must be unique amongst other LDAP_GROUP values.

• Resets previous LDAP configuration values.

• A maximum of 10 LDAP Groups can be configured.

Example:

LDAP_GROUP LD1

LDAP_GROUP LD2

For inclusive examples, refer to the LDAP_GROUP_CHARACTERS keyword in the

next section.