To help you configure LDAP on your Process Engine,
consider the following example.
Determining the User and Group Base
This diagram shows a Sun One LDAP structure for
a domain called hq_neo.filenet.com (based on the default user
initialization file iplanet.ldf provided by FileNet). The diagram
illustrates several organizational units (ous).
To include users and groups in all ous,
as indicated by the gray box, set the User
and Group Base to the top level within the box, as
follows:
dc=hq_neo,dc=filenet,dc=com
To allow access to only those users and groups within the
ou1 ou, as indicated by the
gray box, set the User and Group
Base to the top level within the box, as follows:
ou=ou1,dc=hq_neo,dc=filenet,dc=com
Determining the LDAP Username value
To determine the value to enter in LDAP Username,
for example the default administrative user PEAdmin, use the ldifde (or
equivalent) tool to display the distinguished name (dn)
for the user. In our example, the dn
is:
uid=PEAdmin,ou=ou1,dc=hq_neo,dc=filenet,dc=com
Removing the User and Group Base from
the dn leaves the LDAP
Username.