Ldap failover server properties, Viewing logs and statistics, Logging overview – HP Secure Key Manager User Manual

Figure 133 Viewing LDAP Schema Properties section
Table 113 LDAP Schema Properties section components

Component

Description

User Base DN

The base distinguished name (DN) from which to begin the search for usernames.

User ID Attribute

The attribute type for the user on which to search. The attribute type you choose must

result in globally unique users.

User Object Class

Used to identify records of users that can be used for authentication.

User List Filter

Used for narrowing the search within the object class.

Search Scope

The Search Scope determines how deep within the LDAP user directory the system

searches for a user.

•

One Level: search only the children of the base node

•

Sub Tree: search all the descendents of the base node. Depending on the size of

your LDAP directory, this can be very inefficient.

NOTE:

The LDAP protocol supports four search scopes: base, onelevel, subtree and

children. You can specify only onelevel and subtree at this time. Note that subtree

includes base and children, so by specifying subtree, the search scope includes

subtree, base, and children.

Edit

Click to modify the properties.

Clear

Click to remove the current properties.

LDAP Failover Server Properties

Use the LDAP Failover Server Properties section to define a backup LDAP server to use in case the

main LDAP server becomes inaccessible due to a non-timeout error. When the primary LDAP server is

down, the SKM appliance shifts to the failover LDAP server and periodically retries the main server to

see if it has become accessible again.

220

Using the Management Console