PowerCenter All Products
Host name or IP address of the machine hosting the LDAP directory service.
Listening port for the LDAP server. This is the port number to communicate with the LDAP directory service. Typically, the LDAP server port number is 389. If the LDAP server uses SSL, the LDAP server port number is 636. The maximum port number is 65535.
LDAP Directory Service
Type of LDAP directory service.
If you use Kerberos authentication, you must select Microsoft Active Directory.
Distinguished name (DN) for the principal user. The user name often consists of a common name (CN), an organization (O), and a country (C). The principal user name is an administrative user with access to the directory. Specify a user that has permission to read other user entries in the LDAP directory service. Leave blank for anonymous login. For more information, see the documentation for the LDAP directory service.
Password for the principal user. Leave blank for anonymous login.
Not available if you use Kerberos authentication.
Use SSL Certificate
Indicates that the LDAP server uses the Secure Socket Layer (SSL) protocol.
Trust LDAP Certificate
Determines whether the Service Manager can trust the SSL certificate of the LDAP server. If selected, the Service Manager connects to the LDAP server without verifying the SSL certificate. If not selected, the Service Manager verifies that the SSL certificate is signed by a certificate authority before connecting to the LDAP server.
To enable the Service Manager to recognize a self-signed certificate as valid, specify the truststore file and password to use.
Not Case Sensitive
Indicates that the Service Manager must ignore case sensitivity for distinguished name attributes when assigning users to groups. Enable this option.
Group Membership Attribute
Name of the attribute that contains group membership information for a user. This is the attribute in the LDAP group object that contains the DNs of the users or groups who are members of a group. For example,
Maximum number of user accounts to import into a security domain. For example, if the value is set to 100, you can import a maximum of100 user accounts into the security domain.
If the number of user to be imported exceeds the value for this property, the Service Manager generates an error message and does not import any user. Set this property to a higher value if you have many users to import.
Default is 1000.