Package com.ibm.security.access.user

Class LDAPProperties

  • public class LDAPProperties
extends java.lang.Object
    This class contains the LDAP Properties which can be overriden using the Properties map exposed in several init methods. All values of {@link·java.util.Properties} should be Strings.

    • Field Detail

      • bindDn

        public static final java.lang.String bindDn
        Bind Dn to connect to LDAP User Registry
        See Also:
        Constant Field Values

      • novellSuffixSearchEnabled

        public static final java.lang.String novellSuffixSearchEnabled
        See Also:
        Constant Field Values

      • ignoreSuffix

        public static final java.lang.String ignoreSuffix
        LDAP suffixes to ignore
        See Also:
        Constant Field Values

      • suffixTriggerCount

        public static final java.lang.String suffixTriggerCount
        See Also:
        Constant Field Values

      • suffixMaxIterations

        public static final java.lang.String suffixMaxIterations
        See Also:
        Constant Field Values

      • suffixOrdering

        public static final java.lang.String suffixOrdering
        Order which known suffixes will be searched
        See Also:
        Constant Field Values

      • basicUserSearchSuffix

        public static final java.lang.String basicUserSearchSuffix
        LDAP suffixes which contain Basic Users.
        See Also:
        Constant Field Values

      • basicUserSuffixOptimizer

        public static final java.lang.String basicUserSuffixOptimizer
        Enable search suffix optimization.
        See Also:
        Constant Field Values

      • sslKeystore

        public static final java.lang.String sslKeystore
        Set the SSL keystore to use for TLS connections to LDAP User Registry.
        See Also:
        Constant Field Values

      • clientCertLabel

        public static final java.lang.String clientCertLabel
        Set the client certificate to use for TLS connection the LDAP User Registry.
        See Also:
        Constant Field Values

      • sslKeystorePwd

        public static final java.lang.String sslKeystorePwd
        Set the password to use for the SSL Keystore.
        See Also:
        Constant Field Values

      • sslTruststore

        public static final java.lang.String sslTruststore
        Set the SSL Truststore to use for TLS connections.
        See Also:
        Constant Field Values

      • sslTruststorePwd

        public static final java.lang.String sslTruststorePwd
        Set the password to use for the SSL Truststore
        See Also:
        Constant Field Values

      • connectionInactivity

        public static final java.lang.String connectionInactivity
        Set the maximum allowed connection inactivity.
        See Also:
        Constant Field Values

      • maxSearchSize

        public static final java.lang.String maxSearchSize
        Set the maximum number of search results to return.
        See Also:
        Constant Field Values

      • timeout

        public static final java.lang.String timeout
        Set the maximum time that Verify Access will wait for a response to a request.
        See Also:
        Constant Field Values

      • authnTimeout

        public static final java.lang.String authnTimeout
        Set the maximum time that Verify Access will wait for a response to an authentication request.
        See Also:
        Constant Field Values

      • searchTimeout

        public static final java.lang.String searchTimeout
        Set the maximum time that Verify Access will wait for a response to a search request.
        See Also:
        Constant Field Values

      • enhancedPwdPolicy

        public static final java.lang.String enhancedPwdPolicy
        See Also:
        Constant Field Values

      • maxAuthnConnections

        public static final java.lang.String maxAuthnConnections
        Set the maximum number of connections to the LDAP User Registry for authentication requests
        See Also:
        Constant Field Values

      • sslV3enable

        public static final java.lang.String sslV3enable
        Enable the SSLv3 Protocol
        See Also:
        Constant Field Values

      • tlsV10Enable

        public static final java.lang.String tlsV10Enable
        Enable the TLSv1.0 Protocol
        See Also:
        Constant Field Values

      • tlsV11Enable

        public static final java.lang.String tlsV11Enable
        Enable the TLSv1.1 Protocol
        See Also:
        Constant Field Values

      • tlsV12Enable

        public static final java.lang.String tlsV12Enable
        Enable the TLSv1.2 Protocol
        See Also:
        Constant Field Values

      • cipherSuites

        public static final java.lang.String cipherSuites
        Set the list of allowed cipher suites to use for SSL/TLS connections
        See Also:
        Constant Field Values

      • userSearchFilter

        public static final java.lang.String userSearchFilter
        Set the filter to use when searching for all users (Native and Basic).
        See Also:
        Constant Field Values

      • isMemberOfAttribute

        public static final java.lang.String isMemberOfAttribute
        See Also:
        Constant Field Values

      • groupSearchFilter

        public static final java.lang.String groupSearchFilter
        Set the filter to use when searching for Groups.
        See Also:
        Constant Field Values

      • staticGroupObjectclass

        public static final java.lang.String staticGroupObjectclass
        See Also:
        Constant Field Values

      • dynamicGroupsEnabled

        public static final java.lang.String dynamicGroupsEnabled
        Enable dynamic group support.
        See Also:
        Constant Field Values

      • bindAuthPwdChange

        public static final java.lang.String bindAuthPwdChange
        Enforce a password change when using bind authentication.
        See Also:
        Constant Field Values

      • authUsingRebind

        public static final java.lang.String authUsingRebind
        Authenticate users using rebind
        See Also:
        Constant Field Values

      • searchPageSize

        public static final java.lang.String searchPageSize
        Limit the page size returned by LDAP searches.
        See Also:
        Constant Field Values

      • basicUserPrincipalAttribute

        public static final java.lang.String basicUserPrincipalAttribute
        LDAP attribute to use as a unique identifier for Basic users.
        See Also:
        Constant Field Values

      • basicUserPrincipalAdd

        public static final java.lang.String basicUserPrincipalAdd
        See Also:
        Constant Field Values

      • basicGroupIdAttribute

        public static final java.lang.String basicGroupIdAttribute
        LDAP attribute to use for group membership
        See Also:
        Constant Field Values

      • ignoreIfDown

        public static final java.lang.String ignoreIfDown
        Ignore LDAP Server if Verify Access cannot get a response.
        See Also:
        Constant Field Values

      • ignoreEmptyPasswordOnNativeCreate

        public static final java.lang.String ignoreEmptyPasswordOnNativeCreate
        Allow the creation of native LDAP users ithout setting a password
        See Also:
        Constant Field Values

      • passwordAttribute

        public static final java.lang.String passwordAttribute
        Specify the LDAP attribute to use as the password
        See Also:
        Constant Field Values

      • mgmtDomainSuffix

        public static final java.lang.String mgmtDomainSuffix
        See Also:
        Constant Field Values

      • allowQoutePattern

        public static final java.lang.String allowQoutePattern
        See Also:
        Constant Field Values

      • returnRegistryId

        public static final java.lang.String returnRegistryId
        See Also:
        Constant Field Values

      • userSelfcareObjectclass

        public static final java.lang.String userSelfcareObjectclass
        See Also:
        Constant Field Values

      • authUsingCompare

        public static final java.lang.String authUsingCompare
        Validate user password's using LDAP compare.
        See Also:
        Constant Field Values

      • enableLastLogin

        public static final java.lang.String enableLastLogin
        Record the last password authentication timestamp using a LDAP attribute
        See Also:
        Constant Field Values

      • lastLoginAttribute

        public static final java.lang.String lastLoginAttribute
        Specify a custom native user attribute to record the last logn time.
        See Also:
        Constant Field Values

      • basicUserSupport

        public static final java.lang.String basicUserSupport
        Enable basic user support.
        See Also:
        Constant Field Values

      • basicUserNoDuplicates

        public static final java.lang.String basicUserNoDuplicates
        Specify whether duplicate users (identified by principal attribute) are allowed.
        See Also:
        Constant Field Values

      • groupAttributeNames

        public static final java.lang.String groupAttributeNames
        See Also:
        Constant Field Values

      • groupMaxLifespan

        public static final java.lang.String groupMaxLifespan
        See Also:
        Constant Field Values

      • requireNativeGroup

        public static final java.lang.String requireNativeGroup
        See Also:
        Constant Field Values

      • defaultPolicyOverrideSupport

        public static final java.lang.String defaultPolicyOverrideSupport
        See Also:
        Constant Field Values

      • loginFailurePersistent

        public static final java.lang.String loginFailurePersistent
        Enable caching of failed password attempts using LDAP attribute.
        See Also:
        Constant Field Values

      • loginFailurePersistentAttribute

        public static final java.lang.String loginFailurePersistentAttribute
        Specify a native LDAP attribute to store failed password attempts.
        See Also:
        Constant Field Values

      • persistentStrikeExpireTIme

        public static final java.lang.String persistentStrikeExpireTIme
        Specify the length of time before the password fail count is reset
        See Also:
        Constant Field Values

      • lateLockoutNotification

        public static final java.lang.String lateLockoutNotification
        Specify if the user should be told an authentication request failed because of Time Of Day access policy.
        See Also:
        Constant Field Values

      • cachePolicyExpireTime

        public static final java.lang.String cachePolicyExpireTime
        See Also:
        Constant Field Values

      • basicUserPwdPolicy

        public static final java.lang.String basicUserPwdPolicy
        See Also:
        Constant Field Values

      • cacheResetStrikes

        public static final java.lang.String cacheResetStrikes
        See Also:
        Constant Field Values

    • Constructor Detail

      • LDAPProperties

        public LDAPProperties()