The -xoption forces ldapsearch to use simple authentication instead of SASL.

Idle Rebinding Options

The following two LDAPv3 plugin parameters aren’t documented in the open directory administration guide. The parameters are in, or can be added to, the file /library/preferences/directoryservice/DSLDAPv3PlugInConfig.plist.

Delay Rebind

This parameter specifies how long the LDAP plugin waits before attempting to reconnect to a server that fails to respond. You can increase this value to prevent continuous reconnect attempts.

<key>Delay Rebind Try in seconds<\key>

<integer>n<\integer>

You should find this parameter in the plist file near <key>OpenClose Timeout in seconds<\key>. If not, you can add it there.

Idle Timeout

This parameter specifies how long the LDAP plugin will sit idle before disconnecting from the server. You can adjust this value to reduce overloading of the server's connections from remote clients.

<key>Idle Timeout in minutes<\key>

<integer>n<\integer>

If it doesn’t already exist in the plist file, you can add it near <key>OpenClose Timeout in seconds<\key>.

Additional Information About LDAP

The LDAP server in Mac OS X Server is based on OpenLDAP. Additional information about OpenLDAP, including an administrator’s guide, is available at www.openldap.org.

158

Chapter 14 Working With Open Directory

Page 158
Image 158
Apple oxs manual Idle Rebinding Options, Additional Information About Ldap, Delay Rebind, Idle Timeout