Configuring the PTA Plug-in

Variable

Definition

 

 

 

has expired, the server closes the connection

 

and opens a new connection to the

 

authenticating directory. The server will not

 

close the connection unless a bind request is

 

initiated and the directory determines the

 

connection lifetime has been exceeded. If this

 

option is not specified, or if only one host is

 

listed, no connection lifetime will be enforced.

 

If two or more hosts are listed, the default is

 

300 seconds (five minutes). See Section 3.5,

 

“Configuring the Optional Parameters” for

 

more information.

 

 

Table 17.1. PTA Plug-in Parameters

3. Configuring the PTA Plug-in

The only method for configuring the PTA plug-in is to modify the entry cn=Pass Through Authentication,cn=plugins,cn=config. To modify the PTA configuration, do the following:

1.Use the ldapmodify command to modify cn=Pass Through Authentication,cn=plugins,cn=config.

2.Restart Directory Server. 1

Before configuring any of the PTA Plug-in parameters, the PTA Plug-in entry must be present in the Directory Server. If this entry does not exist, create it with the appropriate syntax, as described in Section 2, “PTA Plug-in Syntax”.

NOTE

If the user and configuration directories are installed on different instances of the directory, the PTA Plug-in entry is automatically added to the user directory's configuration and enabled.

This section provides information about configuring the plug-in in the following sections:

Section 3.1, “Turning the Plug-in On or Off”

Section 3.2, “Configuring the Servers to Use a Secure Connection”

1The commands to start and stop the Directory Server on platforms other than Red Hat Enterprise Linux are described in Section 3, “Starting and Stopping Servers”.

495

Page 515
Image 515
HP UX Red Hat Direry Server Software manual Configuring the PTA Plug-in, PTA Plug-in Parameters