Note: ![[Updated in March 2013]](../../delta.gif)
If you want the login properties to be case-sensitive,
then ensure that the
attributeCache is disabled.
Alternatively, you can choose to define login property names that
are not part of the distinguished name element.
![[Updated in March 2013]](../../deltaend.gif)
mar2013
All
login properties are searched during login. If multiple entries or
no entries are found, an exception is thrown. For example, if you
specify the login properties as uid;mail and the login ID
as Bob, the search filter searches for uid=Bob or mail=Bob. When the
search returns a single entry, then authentication can proceed. Otherwise,
an exception is thrown.
Supported configurations: If you define
multiple login properties, then the first login property is programmatically
mapped to the federated repositories principalName property. For example,
if you set
uid;mail as the login properties,
the LDAP attribute uid value is mapped to the federated repositories
principalName property. If you define multiple login properties, after
login, the first login property is returned as the value of the principalName
property. For example, if you pass
joe@yourco.com as
the principalName value and the login properties are configured as
uid;mail, the principalName is returned as joe.
sptcfg