Note: This feature is being deprecated. For similar functionality, use an LDAP host, which is a type of Connector host. See Connector Host for more information.
Note: This section applies to the Cleo VLTrader and Cleo Harmony applications only.
Use the LDAP Server tab to configure the external LDAP directory service to be used for authenticating users. The LDAP service cluster can be obtained by specifying a single domain where the LDAP servers are located, or through manually configuring an LDAP service cluster that resides on a single domain. In either case, hosts can optionally be designated as primary servers and others as backups. If you are unsure of any of the required values, contact your directory administrator. LDAP user groups can then subsequently be configured as mailboxes in each of the local user hosts – FTP, HTTP, SSH FTP, and Users.
Server configuration reference
- Enabled
- Select the check box to enable LDAP connections to the configured server. Clear the check box to disable LDAP connections. When this check box is cleared, LDAP users are not able to log in.
- Directory Type
- The product used for the external LDAP directory service.
- Security Mode
- If the directory server requires use SSL, specify a security mode. Otherwise, select None.
Domain configuration reference
- Lookup
- Select the check box to use the value in the Domain field for retrieving SRV (Service) records for the LDAP service cluster.
- Domain
- The name of the domain from which you want to retrieve SRV records.
- SRV record table
- The SRV record table displays information about SRV records. Each row in the table represents one SRV record. Each row contains the following columns:
- Base DN
- The base organizational unit where the users are defined. Contact your directory administrator for the correct Base DN value. (The Base DN value entered here can be overridden in a local user host LDAP mailbox.)
- Search filter
- Optional. Used to limit the amount of information returned from the LDAP server when many users are defined. A more restrictive filter can be specified as a comma separated list. If necessary, contact your directory administrator to determine the appropriate attributes and values. You can override the value entered here in a local user host LDAP mailbox.
- Username Attribute
- The Username Attribute is the directory attribute that matches the username entered when a login is required. The following table contains typical attribute names for the supported directory types.
- LDAP Server Advanced Settings
- The LDAP Server Advanced Settings dialog box displays when you click Advanced on the LDAP Server tab. Use this dialog box to specify values for password expiration checking.
- Enable Password Expiration Checking
- Select this check box to enable password expiration checking and the rest of the fields in the dialog box. Password expiration checking provides a daily email notification to the system administrator.
- Warning Days Before Password Expiration
- The range of days within which a notification is generated.
- Daily Time Check
- The time of day password expiration is checked.
- To
- The email address of the recipient of the daily password expiration check notification. You can specify multiple recipients. Separate email addresses by commas (,), semi-colons(;) or colons(:).
- From
- The email address of the sender of the daily password expiration check notification. If this field contains multiple email addresses, only the first address is displayed.
- Subject
- String that appears in the Subject field of the daily password expiration check notification.
Comments
0 comments
Please sign in to leave a comment.