PowerCenter All Products
LDAP Directory Service
Microsoft Active Directory
Name of the LDAP security domain. The name is not case sensitive and must be unique within the domain. It cannot exceed 128 characters or contain the following special characters:
, + / < > @ ; \ % ?
The name can contain an ASCII space character except for the first and last character. All other space characters are not allowed.
User search base
Distinguished name (DN) of the entry that serves as the starting point to search for user names in the LDAP directory service. The search finds an object in the directory according to the path in the distinguished name of the object.
For example, in Microsoft Active Directory, the distinguished name of a user object might be cn=UserName,ou=OrganizationalUnit,dc=DomainName, where the series of relative distinguished names denoted by dc=DomainName identifies the DNS domain of the object.
An LDAP query string that specifies the criteria for searching for users in the directory service. The filter can specify attribute types, assertion values, and matching criteria.
(objectclass=*)searches all objects.
(&(objectClass=user)(!(cn=susan)))searches all user objects except “susan.” For more information about search filters, see the documentation for the LDAP directory service.
Group search base
Distinguished name (DN) of the entry that serves as the starting point to search for group names in the LDAP directory service.
An LDAP query string that specifies the criteria for searching for groups in the directory service.