Problem

Information about UCONF parameters am.exit.custom.*

explanations needed for the uconf parameters am.exit.custom.* :

am.exit.custom.ldap_base.value : ?

am.exit.custom.ldap_login_dn_format.value : ?

am.exit.custom.ldap_get_roles_filter.value : ?

Resolution

• am.exit.custom.ldap_base: the base Distinguished Name (DN) to authenticate on the connected LDAP server. The top level of the LDAP directory tree is the base DN. The base DN defines which node of the LDAP tree to use as the root node. Example: dc=example,dc=com;
• am.exit.custom.ldap_login_dn_format: the user DN format used to search a user DN from the LDAP server. For example, if a user is identified by cn=theUser,ou=people,dc=example,dc=com, you must set am.exit.custom.ldap_login_dn_format to "cn=%s,ou=people,dc=example,dc=com";
• am.exit.custom.ldap_get_roles_filter: the filter used to retrieve the groups a given user belongs to. For example, if the list of groups of the user named theUser is returned by the filter "(&(objectClass=group)(member=cn=theuser,ou=people,dc=example,dc=com))", the filter value to set in am.exit.custom.ldap_get_roles_filter is "(&(objectClass=group)(member=cn=%s,ou=people,dc=example,dc=com))".

Note that the examldap.c sample has been built with the OpenLDAP library. This library is not delivered by Axway. The customer must compile the OpenLDAP library and add it to the LD_LIBRARY_PATH.