New (and Edit) LDAP server window
This window contains the properties associated with each LDAP server. You use this window when you are setting up your security
system personnel database for the first time.
Figure 380. New LDAP server window
You access this window when you click the New button (
) on the LdapServers tab. You access this view by clicking , followed by double-clicking the LdapNetwork driver row in the table and clicking the LdapServers tab.
To edit the properties for an existing server, you select the server row on the LdapServers tab and click the Edit button (
).
| Property | Value | Description |
|---|---|---|
| Display Name | text | Defines the name of the server. |
| Status | read-only | Reports "Issueable" until the badge is assigned, then it may be Active, Disabled, Lost or Unknown. |
| Connection Host | URL | Defines the URL to the LDAP server. The location may be on the same computer or elsewhere available on an intranet or the Internet. |
| Connection Port | number (defaults to 636) | Defines the port over which the computer communicates with the server. |
| Enable Connection TLS | true or false (default)
|
Selects secure transmission and identity verification using the TLS protocol. Do not change this value unless you are confident of what you are doing. Changing this value could open the system to hackers. |
| Connection User | text | Defines the LDAP server attributes for the security system administrator.
uid=admin is an example of the distinguished name for this user. dc=com is the user parent class. |
| Connection Password | text | Defines the password the LDAP server requires for this user. |
| Enable connection Pooling | true (default) or false |
Enables and disables the use of a connection pool. To speed processing, LDAP servers maintain a pool of connections. A request from the security system that uses an existing connection saves valuable processing time, which improves system performance. Do not change the default (true = enabled) setting unless you know what you are doing. |
| Initial Size | number (defaults to 0) | Defines the number of pooling connections. |
| Max Size | number (defaults to 10) | Defines the maximum number of connections to the LDAP server that the security system supports concurrently. |
| Pref Size | number (defaults to 0) | Defines the preferred number of connections to the LDAP server that the security system supports concurrently. |
| Connection Timeout | milliseconds | Defines the number of milliseconds that an idle connection may remain in the pool without being closed and removed from the pool. |
| User Search Base | text | Defines where to start searching for personnel in the LDAP server hierarchy.
ou stands for organizational unit. dc stands for domain controller. dn stands for distinguished name. This name both uniquely identifies an entry in the LDAP database and describes its position in the hierarchy. |
| User Search Filter | text | Defines the objectClass (metadata) associated with each personnel record that identifies it as a personnel record versus a system or other record type in the server database. |
| Search Scope | drop-down list | Defines how much of the User Search Base to actually search: |
| Polling Interval | plus or minus hours minutes and seconds | Defines how frequently to poll the LDAP server. |