XYGATE User Authentication Reference Manual
XYGATE
®
User Authentication
™
(XUA) 1.85 Reference Manual
Appendix A: The UACONF File
XYPRO Technology Corporation 228 Proprietary and Confidential
A34: LDAP_PORT
The value to LDAP_PORT keyword tells XUA which port is assigned to the LDAP
server in the network. The most commonly used is port 389 which therefore is the
default value.
Syntax:
LDAP_PORT <port number>
Example:
LDAP_PORT 389
The value of this keyword created by the XUA_LDAP_INSTALL macro (page 70) can
be changed by editing the UACONF file after the macro run is completed.
Important! If you assign a non-SSL port number for the LDAP_PORT keyword, then
you must comment out the LDAP_PROXY_CACERT keyword so that XYGATEUA
does not initiate an SSL connection.
If the keyword LDAP_PORT is assigned to an SSL port number, then the
LDAP_PROXY_CACERT keyword should have the cacert filename corresponding to
the LDAP server to which XYGATEUA will be connecting.
A35: LDAP_PROXY_CACERT
This keyword’s value specifies the SSL certificate file, if SSL encryption between the
LDAP server and XUA is desired. This keyword is optional. If it is omitted, the
communication between XYGATEUA and LDAP servers will be unencrypted.
Syntax:
LDAP_PROXY_CACERT "<certificate filename of the Certificate Authority or
self-signed certificate file>"
Example:
LDAP_PROXY_CACERT "ldapcert"
The value of this keyword must be enclosed by double-quotation marks and must be
unqualified. The certificate filename must be present in the XYGATEUA installation
subvol. The value of this keyword created by the XUA_LDAP_INSTALL macro
(page 70) can be changed by editing the UACONF file after the macro run is
completed.
Important! XYGATEUA uses SSL with LDAP if the LDAP_PROXY_CACERT
keyword is present in the UACONF file. If you want non-SSL (cleartext) connections,
then you must comment out the LDAP_PROXY_CACERT keyword.