Directory Proxy Server 5.2 bind forwarding is used to determine whether to pass a bind request on to an LDAP server or to reject the bind request and close the client's connection. Directory Proxy Server 11g Release 1 (11.1.1) forwards either all bind requests or no bind requests. However, by setting the allowed-auth-methods connection handler property, successful binds can be classified into connection handlers, according to the authentication criteria. Directory Proxy Server 11g Release 1 (11.1.1) can be configured to reject all requests from a specific connection handler, providing the same functionality as Directory Proxy Server 5.2 bind forwarding.
In Directory Proxy Server 5.2, these configuration attributes are stored under ou=groups,cn=user-defined-name,ou=dar-config,o=NetscapeRoot
The following table maps the Directory Proxy Server 5.2 bind forwarding attributes to the corresponding Directory Proxy Server 11g Release 1 (11.1.1) connection handler property settings.
Table 9–5 Mapping of Bind Forwarding Attributes to Connection Handler Property Settings
Directory Proxy Server 5.2 Attribute |
Directory Proxy Server 11g Release 1 (11.1.1) Property |
---|---|
ids-proxy-con-bind-name |
No equivalent |
ids-proxy-con-permit-auth-none |
allowed-auth-methods:anonymous |
ids-proxy-con-permit-auth-simple |
allowed-auth-methods:simple |
ids-proxy-con-permit-auth-sasl |
allowed-auth-methods:sasl |