Use this page to configure Lightweight Directory Access Protocol
(LDAP) member attributes.
To view this administrative console page, complete the following steps:
- In the administrative console, click Security > Secure administration,
applications, and infrastructure.
- Under User account repository, select Federated repositories from
the Available realm definitions field and click Configure.
- Under Related items, click Manage repositories.
- Click Add to specify a new external repository or select an external
repository that is preconfigured.
- Under Additional properties, click Group attribute definition.
- Under Additional properties, click Member attributes.
- Click New to specify a new member attribute.
When you finish adding or updating your federated repository configuration,
go to the Security > Secure administration, applications, and infrastructure panel
and click Apply to validate the changes.
Configuration tab
Name of member attribute
Specifies the name of the member attribute in LDAP. For example,
member and uniqueMember are two commonly used names of member attributes.
The member attribute is used to store the values that reference members
that the group contains. For example, a group type with an object class groupOfNames
has a member attribute named member; group type with object class groupOfUniqueNames
has a member attribute named uniqueMember. An LDAP repository supports multiple
group types if multiple member attributes and their associated group object
classes are specified.
Object class
Specifies the object class of the group that uses this member attribute.
If this field is not defined, this member attribute applies to all group object
classes.
Scope
Specifies the scope of the member attribute.
Default: |
Direct |
Range: |
- Direct
- The member attribute contains direct members only. Direct members are
members that are directly contained by the group. For example, if Group1 contains
Group2 and Group2 contains User1, then User1 is a direct member of Group2,
but User1 is not a direct member of Group1.
- Nested
- The member attribute contains both direct members and nested members.
- All
- The member attribute contains direct members, nested members, and dynamic
members.
|