Use the following parameters in the tm1s.cfg file to configure and support LDAP
authentication.
PasswordSource
Compares user-entered password to the stored
password.
LDAPHost
Specifies the domain name or dotted string representation of the IP address of the LDAP
server host.
LDAPPasswordFile
Defines the password file used when LDAPUseServerAccount
is not used. This is the full path of the .dat file that contains
the encrypted password for the IBM Cognos TM1 server Admin
Server's private key.
LDAPPasswordKeyFile
Defines the password key used when LDAPUseServerAccount
is not used.
LDAPPort
Specifies the port IBM
Cognos
TM1
uses to bind to an LDAP server.
LDAPSearchBase
Specifies the node in the LDAP tree where IBM Cognos TM1 begins searching for valid users.
LDAPSearchField
The name of the LDAP attribute that is expected
to contain the name of the IBM Cognos TM1 user
being validated.
LDAPSkipSSLCertVerification
Skips the certificate trust verification step for the SSL certificate used to
authenticate to an LDAP server. This parameter is applicable only when
LDAPVerifyServerSSLCert=T.
LDAPSkipSSLCRLVerification
Skips CRL checking for the SSL certificate used to authenticate to an LDAP server. This
parameter is applicable only when LDAPVerifyServerSSLCert=T.
LDAPUseServerAccount
Determines if a password is required to connect
to the server when using LDAP authentication.
LDAPVerifyCertServerName
Specifies a server to use during the SSL certificate verification process for LDAP server
authentication. This parameter is applicable only when LDAPVerifyServerSSLCert=T.
LDAPVerifyServerSSLCert
Delegates the verification of the SSL certificate to TM1. This parameter is useful, for example, when you are using LDAP with a proxy server.
LDAPWellKnownUserName
Specifies the user name used by the IBM
Cognos
TM1 server
to log in to LDAP and look up the name submitted
by the user.