6.2.2. Setting up the LDAP Service Configuration Options

6.2.2. Setting up the LDAP Service Configuration Options

Procedure 6.4. To configure the LDAP service configuration options:

  1. Select the newly-created LDAP configuration and then click Edit.

  2. On the Connection tab, specify the following:

    1. Open/close times out in: 10 seconds

    2. Query times out in: 10 seconds

    3. Re-bind attempted in: 10 seconds

    4. Connection idles out in: 1 minute

    5. Clear all checkboxes

  3. On the Search & Mappings tab, specify the following:

    1. Access this LDAP server using: CUSTOM

    2. In the Record Types and Attributes panel, select Default Attribute Types, and then click Add.

    3. Select the Attribute Types option, select RecordName from the list, and then click OK.

    4. Select the newly-added RecordName attribute, and then click Add under the Map to any items in list panel.

    5. Type "uid" (without the quotes) in the text box. Click outside of the text box to set the value.

  4. Add a Users record, as follows:

    1. Under the Record Types and Attributes panel, click Add.

    2. Select the Record Types option, select Users from the list, and then click OK.

    3. Select the newly-added Users record type, and then click Add under the Map to any items in list panel.

    4. Type "inetOrgPerson" (without the quotes) in the text box. Click outside of the text box to set the value.

    5. In the Search base field, type "dc=example,dc=com" (without the quotes), and select the Search in all subtrees option.

  5. Add attributes to the Users record as appropriate for your deployment. The following is an example of the required procedure.

    1. Under the Record Types and Attributes panel, click Add.

    2. Select the Attribute Types option, and then use Command-Click to select the attributes that you want to add. For example, a typical deployment might include the following attributes:

      • AuthenticationAuthority

      • PrimaryGroupID

      • RealName

      • RecordName

      • UniqueID

      • UserShell

    3. Click OK to add the selected attributes to the Users record.

  6. Specify appropriate mappings for the attributes that you just added. For example:

    1. Select the Authentication Authority record type, and then click Add under the Map to any items in list panel.

    2. Type "#;Kerberosv5;;$uid$;EXAMPLE.COM" (without the quotes) in the text box. Click outside of the text box to set the value.

    3. Use the same procedure to map PrimaryGroupID to gidNumber.

    4. Use the same procedure to map UniqueID to uidNumber.

    5. Continue until all required entries have been mapped, and then click OK.

  7. Click OK finish setting up the LDAP service configuration options.