Mapping the Groups Configuration

TABLE 6–5Mapping Between Version 5 Network Group Attributes and 6.0 Properties

(Continued)

Directory Proxy Server 5 Network Group Attribute

Directory Proxy Server 6.0 Property

 

 

 

ids-proxy-con-tcp-no-delay

Set this as a property for a specific listener port by using

 

the following command:

 

 

$ dpconf set-ldap-listener-prop

 

 

use-tcp-no-delay:true

 

 

 

 

ids-proxy-con-allow-multi-ldapv2–bind

No equivalent

 

 

 

 

ids-proxy-con-reverse-dns-lookup

No equivalent

 

 

 

ids-proxy-con-timeout

This functionality exists but with less granularity than in

 

Directory Proxy Server 5. Set this limit as a property for a

 

specific listener port by using the following command:

 

$ dpconf set-ldap-listener-prop

 

 

connection-idle-timeout:value

 

 

 

 

Mapping Bind Forwarding

Directory Proxy Server 5 bind forwarding is used to determine whether to pass a bind request on to an LDAP server or to reject the bind request and close the client's connection. Directory Proxy Server 6.0 forwards either all bind requests or no bind requests. However, by setting the allowed-auth-methods connection handler property, successful binds can be classified into connection handlers, according to the authentication criteria. Directory Proxy Server 6.0 can be configured to reject all requests from a specific connection handler, providing the same functionality as Directory Proxy Server 5 bind forwarding.

In Iplanet Directory Access Router 5.0 (IDAR) these configuration attributes are stored under ids-proxy-con-Name=group-name,ou=groups,ou=pd2,ou=iDAR,o=services. In Directory Proxy Server 5.2, these configuration attributes are stored under ou=groups,cn=user-defined-name,ou=dar-config,o=NetscapeRoot

The following table maps the Directory Proxy Server 5 bind forwarding attributes to the corresponding Directory Proxy Server 6 connection handler property settings.

TABLE 6–6Mapping of Directory Proxy Server 5 Bind Forwarding Attributes to Directory Proxy Server 6 Connection Handler Property Settings

Directory Proxy Server 5 Attribute

Directory Proxy Server 6 Property

ids-proxy-con-bind-name

No equivalent

ids-proxy-con-permit-auth-none

allowed-auth-methods:anonymous

ids-proxy-con-permit-auth-simple

allowed-auth-methods:simple

90

Sun Java System Directory Server Enterprise Edition 6.0 Migration Guide • March 2007

Sun Confidential: Registered

Page 90
Image 90
Sun Microsystems 8190994 manual Mapping Bind Forwarding