XYGATE User Authentication Reference Manual

ManualsBrandsHP ManualsServerHP NonStop G-Series

251

252

253

254

255

256

257

258

259

260

XYGATE

User Authentication

™

(XUA) 1.85 Reference Manual

Appendix A: The UACONF File

XYPRO Technology Corporation 223 Proprietary and Confidential

A29: LDAP_GROUP_CHARACTERS

When multiple-LDAP authentication points are configured and a user is authenticating

via LDAP, the user can specify which authentication point to use by prefixing the

password response with:

<LDAP_GROUP_CHARACTERS string><LDAP_GROUP string><LDAP_GROUP_CHARACTERS string>

Entered as a whole password prefix, this allows the user to specify which

authentication point to use.

The LDAP_GROUP_CHARACTERS keyword specifies the character string that will

precede and follow the LDAP_GROUP string.

The LDAP_GROUP_CHARACTERS keyword is required if more than one LDAP

Group is defined.

Syntax:

LDAP_GROUP_CHARACTERS "<string>"

Where "<string>":

• Cannot start with the IMPERSONATION_GROUP characters for the number of

LDAP_GROUP_CHARACTERS defined, or 2, whichever is smaller.

• Must be enclosed by double- or single-quotation marks.

• Must contain at least one character.

• Can contain at most 10 characters; additional characters are ignored.

• Is case-sensitive.

• Cannot contain spaces.

Example:

LDAP_GROUP_CHARACTERS "++"

The value of this keyword created by the XUA_LDAP_INSTALL macro (page 70) can

be changed by editing the UACONF file after the macro run is completed.

The following Example is for configuring LDAP_GROUP_CHARACTERS for multiple-

LDAP Groups.

UACONF Example:

LDAP_GROUP_CHARACTERS "++"

LDAP_GROUP LD1

LDAP_GROUP_DEFAULT OFF

LDAP_HOST X1.Y1.Z1.LOCAL

...

LDAP_GROUP LD2

LDAP_GROUP_DEFAULT ON

LDAP_HOST X2.Y2.Z2.LOCAL

...