Lightweight Directory Access Protocol attributes collection

Use this page to add, modify, or delete the configuration of supported, unsupported, and external LDAP attributes in a federated repositories configuration.

To view this administrative console page, complete the following steps:
  1. In the administrative console, click Security > Global security.
  2. Under User account repository, select Federated repositories from the Available realm definitions field and click Configure. To configure for a specific domain in a multiple security domain environment, click Security domains > domain_name. Under Security Attributes, expand User Realm, and click Customize for this domain. Select the Realm type as Federated repositories and then click Configure.
  3. Under Related items, click Manage repositories.
  4. Click Add > LDAP repository to specify a new external repository or select an external repository that is preconfigured.
  5. Under Additional properties, click LDAP attributes.
  6. To add a new LDAP attribute configuration, click Add and select Supported , Unsupported, or External.
  7. To modify an existing configuration, click the Name/Property Name link and modify the details in the panel that appears.
  8. To delete an existing configuration, select the checkbox for the Name/Property Name and click Delete.

When you finish adding or updating your federated repository configuration, go to the Security > Global security panel and click Apply to validate the changes.

Supported

Specifies the configuration for supported LDAP attributes.

Name
Specifies the name of the LDAP attribute used in the repository LDAP adapter.
Property name
Specifies the name of the corresponding federated repository property.
Syntax
Specifies the syntax of the LDAP attribute. The default value is string. For example, the syntax of the unicodePwd LDAP attribute is octetString.
Entity types
Specifies the entity type that applies the attribute mapping.
Default value
Specifies the default value of the LDAP attribute.
Default attribute
Use this parameter to specify the default attribute of the LDAP attribute.

Unsupported

Specifies the configuration for a federated repository property that the LDAP repository does not support.

Property name
Specifies the name of the federated repository property.
Entity types
Specifies one or more entity types. Use the semicolon (;) as the delimiter to specify multiple entity types.

External

Specifies the configuration for an LDAP attribute that is used as an external ID in the specified LDAP repository.

Name
Specifies the name of the external ID attribute of the LDAP repository.
Syntax
Specifies the syntax of the LDAP attribute. The default value is string. For example, the syntax of the unicodePwd LDAP attribute is octetString.
Entity types
Specifies one or more entity types. Use the semicolon (;) as the delimiter to specify multiple entity types.
Generate value
Specifies whether or not the federated repository should generate the value of the LDAP attribute.