NAME | Description | Attributes | See Also
Syntax |
dnReference |
Default value |
disabled |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
Yes |
This property specifies the data view that Directory Proxy Server uses to store access controls.
The value of this property is the name of one of the following configuration entities: jdbc-data-view, join-data-view, ldap-data-view, ldif-data-view.
The default behavior for this property is as follows: No virtual access control policy.
This property is used to configure the following features:
The virtual ACI contains pools of access controls applicable to all entries. This will be used for the purpose of virtualization.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dn |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the distinguished name of the identity used by Directory Proxy Server to access the access control data view.
This property takes a Distinguished Name (DN) value.
The default behavior for this property is as follows: Proxy uses an anonymous access to access the access control data view.
This property is used to configure the following features:
The virtual ACI contains pools of access controls applicable to all entries. This will be used for the purpose of virtualization.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
No |
Is modifiable |
No |
Is multivalued |
No |
Requires restart |
No |
This property specifies the password of the identity used by Directory Proxy Server to access the access control data view.
This property is read-only. To change the password, use the aci-manager-bind-pwd-file property.
The default behavior for this property is as follows: Proxy uses an anonymous access to access the access control data view.
This property is used to configure the following features:
The virtual ACI contains pools of access controls applicable to all entries. This will be used for the purpose of virtualization.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
password |
Default value |
No default is defined. |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the file from which to read the password of the identity used by Directory Proxy Server to access the access control data view. The temporary file is read once, and the password is stored for future use.
This property takes a path to a file that contains the password value.
This property is used to configure the following features:
The virtual ACI contains pools of access controls applicable to all entries. This will be used for the purpose of virtualization.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the name of the set of access controls that will apply to the connection handler.
The default behavior for this property is as follows: ACIs are unset. Proxy will reject WRITE operations on non-LDAP data views.
This property is used to configure the following features:
Connection handlers define the resource limits and filters that apply to a connection, and the data views that are exposed to the connection.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
enumeration |
Default value |
Default behavior is not defined. |
Must be set |
Yes |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property defines the transformation action. A transformation action describe what the transformation does to its target entry or entries.
This property can take the following values in addition to the default.
Add an attribute
Remove an attribute
Add a value to an attribute
Set a default value
Remove a value of an attribute
Attribute value mapping
This property is used to configure the following features:
Virtual data transformations create a virtual data view from a physical data view. Practically, you never define a virtual data view. Instead, you specify the transformations that you require and define these on an existing physical data view. A transformation performs a specific action in a certain direction. The direction of a transformation determines the transformation model. When you define a virtual data transformation, you create a virtual attribute that exists only in the context of the virtual data view.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
disabled |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the proportion of add requests that are sent to the attached data source.
This property takes an integer.
The value of this property must be at least 1.
This property can also take the following values:
Do not forward any add requests to the data source
This property is used to configure the following features:
A data source can be attached to one or more data source pools for load balancing and failover. When attached to a data source pool, a data source is called an attached data source.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
true |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether or not associated connection handlers accept LDAP add operations.
This property is true or false.
This property is used to configure the following features:
Request filtering policies control what data can be accessed by clients.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
true |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether or not associated connection handlers accept LDAP bind operations.
This property is true or false.
This property is used to configure the following features:
Request filtering policies control what data can be accessed by clients.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
enumeration |
Default value |
allow |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether or not clients must present their own certificates when establishing connections to Directory Proxy Server.
This property can take the following values in addition to the default.
Clients are not allowed to use certificate based authentication
Clients are allowed to use certificate based authentication
Clients must use certificate based authentication
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
true |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether or not associated connection handlers accept LDAP compare operations.
This property is true or false.
This property is used to configure the following features:
Request filtering policies control what data can be accessed by clients.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
true |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether or not associated connection handlers accept LDAP delete operations.
This property is true or false.
This property is used to configure the following features:
Request filtering policies control what data can be accessed by clients.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
enumeration |
Default value |
anonymous |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property specifies a set of authentication methods. Clients must use one of the specified authentication methods in order for the connection to be accepted by the connection handler.
This property can take the following values in addition to the default.
Anonymous authentication
Simple authentication
SASL/External authentication
This property is used to configure the following features:
Connection handlers define the resource limits and filters that apply to a connection, and the data views that are exposed to the connection.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
all |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property specifies a set of LDAP attribute types that can be compared in an LDAP search filter or compare operation.
The default behavior for this property is as follows: All attribute types can be compared
This property is used to configure the following features:
Request filtering policies control what data can be accessed by clients.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
oid |
Default value |
Default behavior is not defined. |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property specifies a set of LDAP control OIDs. The control OIDs determine which LDAP controls are forwarded by Directory Proxy Server.
This property can take the following values in addition to the default.
Proxy authorization v1
Proxy authorization v2
Persistent search
Manage DSA
Authentication request
Real attributes only
Chaining loop detection
Virtual list view (VLV) request
Server side sorting
Get effective rights
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
enumeration |
Default value |
ldap |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property specifies a set of IP port numbers. A client connection must come through one of the specified ports in order for the connection to be accepted by the connection handler.
This property can take the following values in addition to the default.
The LDAP port of Directory Proxy Server
The LDAPS port of Directory Proxy Server
This property is used to configure the following features:
Connection handlers define the resource limits and filters that apply to a connection, and the data views that are exposed to the connection.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
enumeration |
Default value |
base |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property specifies a set of LDAP search scopes that are accepted by associated connection handlers.
This property can take the following values in addition to the default.
Base entry searches
Base + first level searches
Subtree searches
This property is used to configure the following features:
Request filtering policies control what data can be accessed by clients.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dn |
Default value |
|
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property specifies a set of subtrees that can be accessed by clients.
This property takes a Distinguished Name (DN) value.
This property is used to configure the following features:
Request filtering policies control what data can be accessed by clients.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
true |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether or not associated connection handlers accept LDAP extended operations.
This property is true or false.
This property is used to configure the following features:
Request filtering policies control what data can be accessed by clients.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
true |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether or not associated connection handlers accept LDAP searches based on inequality filters.
This property is true or false.
This property is used to configure the following features:
Request filtering policies control what data can be accessed by clients.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
true |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether or not clients can connect to Directory Proxy Server by using LDAPv2.
This property is true or false.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
true |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether or not associated connection handlers accept LDAP modify operations.
This property is true or false.
This property is used to configure the following features:
Request filtering policies control what data can be accessed by clients.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
false |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether or not Directory Proxy Server allows clients to use persistent searches.
This property is true or false.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
true |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether or not associated connection handlers accept LDAP modify DN operations.
This property is true or false.
This property is used to configure the following features:
Request filtering policies control what data can be accessed by clients.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
true |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether or not clients can authenticate to Directory Proxy Server by using SASL/External authentication.
This property is true or false.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
true |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether or not associated connection handlers accept LDAP search operations.
This property is true or false.
This property is used to configure the following features:
Request filtering policies control what data can be accessed by clients.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
true |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether or not Directory Proxy Server allows anonymous clients to perform operations.
This property is true or false.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dn |
Default value |
Default behavior is not defined. |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property specifies the DN of an alternate search base.
When an alternate search base is specified in a subordinate data view, search operations targeted at the superior data view are performed in both the superior data view and the subordinate data view.
By default, Directory Proxy Server automatically configures the alternate search base in the subordinate data view. However, the automatic configuration can be disabled and the feature can be configured manually.
This property takes a Distinguished Name (DN) value.
This property is used to configure the following features:
A JDBC data view enables you to make a relational database accessible to LDAP client applications.
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
An LDAP data view exposes data in an LDAP server to a client request and specifies the data source pool that responds to the request.
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
Default behavior is not defined. |
Must be set |
Yes |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property provides the name of a virtual attribute.
This property is used to configure the following features:
JDBC attributes map LDAP attributes to entries in relational database tables. The definition of a JDBC attribute includes the name of the LDAP attribute, and the relational database table and column in which the corresponding information is located.
Virtual data transformations create a virtual data view from a physical data view. Practically, you never define a virtual data view. Instead, you specify the transformations that you require and define these on an existing physical data view. A transformation performs a specific action in a certain direction. The direction of a transformation determines the transformation model. When you define a virtual data transformation, you create a virtual attribute that exists only in the context of the virtual data view.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property defines a list of attribute name mappings.
When a client makes a request, the mapped attributes are renamed to match the names on the server side. When the result is returned to the client, the attributes are renamed back to match the names on the client side.
The syntax of this string is <client-attr>#<source-attr>.
An attribute mapping of the form <client attribute>#<source attribute>
The value of this property must match the pattern ^[a-zA-Z][-a-zA-Z0-9]+#[a-zA-Z][-a-zA-Z0-9]+$.
The default behavior for this property is as follows: No attribute name mappings
This property is used to configure the following features:
A JDBC data view enables you to make a relational database accessible to LDAP client applications.
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
An LDAP data view exposes data in an LDAP server to a client request and specifies the data source pool that responds to the request.
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property specifies a list of attributes for a search data hiding rule. The rule-action(5dpconf) property defines whether the specified attributes are filtered out of the search result, or whether the unspecified attributes are filtered out of the search result.
The syntax of this string is ATTR_NAME.
An attribute name
The value of this property must match the pattern ^[a-zA-Z][-a-zA-Z0-9]+$.
The default behavior for this property is as follows: No filtering is applied.
This property is used to configure the following features:
Search data hiding rules determine what parts of the result of a search operation are returned to a client. Search data hiding rules are defined for a given request filtering policy.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dn |
Default value |
Default behavior is not defined. |
Must be set |
Yes |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the DN of the subtree represented by the data view.
This property takes a Distinguished Name (DN) value.
This property is used to configure the following features:
A JDBC data view enables you to make a relational database accessible to LDAP client applications.
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
An LDAP data view exposes data in an LDAP server to a client request and specifies the data source pool that responds to the request.
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dn |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
Yes |
This property specifies the DN used by the proxy to bind to the LDAP data source when this data source is configured to use proxy authorization.
This property takes a Distinguished Name (DN) value.
The default behavior for this property is as follows: Proxy does not bind to the LDAP data source.
This property is used to configure the following features:
The common name of the LDAP data source
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
any |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property specifies a set of regular expressions. The bind DN of a client must match at least one regular expression in order for the connection to be accepted by the connection handler.
The default behavior for this property is as follows: All client bind DNs are accepted
This property is used to configure the following features:
Connection handlers define the resource limits and filters that apply to a connection, and the data views that are exposed to the connection.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
No |
Is modifiable |
No |
Is multivalued |
No |
Requires restart |
No |
This property specifies the password used by the proxy to bind to the LDAP data source when this data source is configured to use proxy authorization.
This property is read-only. To change the password, use the bind-pwd-file property.
The default behavior for this property is as follows: The proxy will not use any password to bind to the LDAP data source
This property is used to configure the following features:
The common name of the LDAP data source
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
userPassword |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the name of the attribute used to contain authentication passwords.
This property is used to configure the following features:
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
password |
Default value |
No default is defined. |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
Yes |
This property specifies the file from which to read the password for proxy authorization. The temporary file is read once, and the password is stored for future use.
This property takes a path to a file that contains the password value.
This property is used to configure the following features:
The common name of the LDAP data source
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
disabled |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the proportion of bind requests that are sent to the attached data source.
This property takes an integer.
The value of this property must be at least 1.
This property can also take the following values:
Do not forward any bind requests to the data source
This property is used to configure the following features:
A data source can be attached to one or more data source pools for load balancing and failover. When attached to a data source pool, a data source is called an attached data source.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dnReference |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property specifies the set of data views that Directory Proxy Server uses to find certificates if the cert-data-view-routing-policy(5dpconf) property is set to custom.
The value of this property is the name of one of the following configuration entities: jdbc-data-view, join-data-view, ldap-data-view, ldif-data-view.
The default behavior for this property is as follows: If the cert-data-view-routing-policy is custom, proxy has no route to map the certificate.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
enumeration |
Default value |
all-routable |
Must be set |
Yes |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag that indicates whether or not Directory Proxy Server should use all routable data views or the list of data views specified by cert-data-view-routing-custom-list(5dpconf) when searching for certificates.
This property can take the following values in addition to the default.
All routable data views
Customized set of data views
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property specifies mappings that map attributes in the certificate subject to attributes in the LDAP server.
The syntax of this string is <subject-attr>:<user-attr>.
An attribute mapping of the form <subject attribute>:<user attribute>
The value of this property must match the pattern ^[a-zA-Z][-a-zA-Z0-9]+:[a-zA-Z][-a-zA-Z0-9]+$.
The default behavior for this property is as follows: No attributes in the certificate subject are mapped
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dn |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the base DN of a search operation that finds user entries when a user's name is not specified in their certificate.
This property takes a Distinguished Name (DN) value.
The default behavior for this property is as follows: This property is required when proxy should not use a user certificate subject as the user DN.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dn |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies an optional identity to be used when searching for certificates.
This property takes a Distinguished Name (DN) value.
The default behavior for this property is as follows: Proxy uses an anonymous access to bind when searching for certificates.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
No |
Is modifiable |
No |
Is multivalued |
No |
Requires restart |
No |
This property specifies the password of the optional identity to be used when searching for certificates.
This property is read-only. To change the password, use the cert-search-bind-pwd-file property.
The default behavior for this property is as follows: Proxy uses an anonymous access to bind when searching for certificates.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
password |
Default value |
No default is defined. |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the file from which to read the password of the optional identity used when searching for certificates. The temporary file is read once, and the password is stored for future use.
This property takes a path to a file that contains the password value.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
userCertificate |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is the name of an LDAP attribute used to contain certificates in user entries.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
enumeration |
Default value |
write-affinity-after-write |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the algorithm that determines when requests from the same client should be directed to the same LDAP data source.
This property can take the following values in addition to the default.
Affinity for write requests after the first write request
Affinity for all requests after the first write request
Affinity for all requests after the first read request or write request
Affinity for the first read request after a write request
This property is used to configure the following features:
One or more data sources are attached to a data source pool for load balancing and failover.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
duration |
Default value |
20000 |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the duration of the client affinity.
The duration is expressed in milliseconds.
This property is used to configure the following features:
One or more data sources are attached to a data source pool for load balancing and failover.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
enumeration |
Default value |
use-client-identity |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
Yes |
This property specifies how client credentials are used to authenticate the client to an LDAP data source.
This property can take the following values in addition to the default.
Use the identity specified by the bind-dn(5dpconf) and bind-pwd(5dpconf) properties.
Use the identity provided by the client.
Use the identity specified by the bind-dn(5dpconf) and bind-pwd(5dpconf) properties, and include the client identity in the proxyAuth control.
Use the identity specified by the bind-dn(5dpconf) and bind-pwd(5dpconf) properties, and include the client identity in the proxyAuth control for write operations only.
This property is used to configure the following features:
The common name of the LDAP data source
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
disabled |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the proportion of compare requests that are sent to the attached data source.
This property takes an integer.
The value of this property must be at least 1.
This property can also take the following values:
Do not forward any compare requests to the data source
This property is used to configure the following features:
A data source can be attached to one or more data source pools for load balancing and failover. When attached to a data source pool, a data source is called an attached data source.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dn |
Default value |
Default behavior is not defined. |
Must be set |
Yes |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the distinguished name of the Proxy Manager that is the user allowed to manage the configuration of Directory Proxy Server.
This property takes a Distinguished Name (DN) value.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
No default is defined. |
Must be set |
No |
Is modifiable |
No |
Is multivalued |
No |
Requires restart |
No |
This property specifies the password of the Proxy Manager that is the user allowed to manage the configuration of Directory Proxy Server.
This property is read-only. To change the password, use the configuration-manager-bind-pwd-file property.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
password |
Default value |
No default is defined. |
Must be set |
Yes |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the file from which to read the Proxy manager bind password. The temporary file is read once, and the password is stored for future use.
This property takes a path to a file that contains the password value of at least 8 characters in length.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
duration |
Default value |
3600 |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the maximum length of time a client connection can remain idle before being closed.
The duration is expressed in seconds.
This property is used to configure the following features:
The LDAP listener represents the network interface of Directory Proxy Server.
The LDAP listener represents the network interface of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
duration |
Default value |
3000 |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the maximum length of time that Directory Proxy Server waits for a connection to an LDAP server to become available if a connection pool is empty when a request is made.
The duration is expressed in milliseconds.
The value of this property must be at least 1.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
duration |
Default value |
2000 |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the maximum length of time that the listener can wait for new data to be available.
The duration is expressed in milliseconds.
This property is used to configure the following features:
The LDAP listener represents the network interface of Directory Proxy Server.
The LDAP listener represents the network interface of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
duration |
Default value |
3600000 |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the maximum length of time that the listener can wait to send results back to clients.
The duration is expressed in milliseconds.
This property is used to configure the following features:
The LDAP listener represents the network interface of Directory Proxy Server.
The LDAP listener represents the network interface of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
duration |
Default value |
10000 |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the maximum length of time that a connection between Directory Proxy Server and a data source is attempted before the connection attempt fails.
The duration is expressed in milliseconds.
This property is used to configure the following features:
The common name of the LDAP data source
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
false |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property determines what should be done if an entry in a secondary data view is used by more than one entry in a primary data view.
This property is applicable to secondary data views only.
If it is set to TRUE, the secondary data view entry is deleted when the virtual entry is deleted. If the entry does not exist in the secondary data view, it is created when the virtual entry is created.
This property is true or false.
This property is used to configure the following features:
A JDBC data view enables you to make a relational database accessible to LDAP client applications.
A JDBC table is created for each relational database table that will be used in the JDBC data view. When you create a JDBC table you specify the name of the table in the relational database, and the name you want to assign to this table in the JDBC data view.
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
An LDAP data view exposes data in an LDAP server to a client request and specifies the data source pool that responds to the request.
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
Yes |
This property specifies the class name to use for custom distribution algorithm. This property can be set only if distribution-algorithm property is set to none.
This property accepts the string value that contains Java class name. String value in PackageName.AlgoClassName format is valid.
This property is used to configure the following features:
A JDBC data view enables you to make a relational database accessible to LDAP client applications.
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
An LDAP data view exposes data in an LDAP server to a client request and specifies the data source pool that responds to the request.
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
duration |
Default value |
20000 |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the maximum length of time that Directory Proxy Server waits for a data source to complete a read request.
The duration is expressed in milliseconds.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
enumeration |
Default value |
automatic |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag that indicates whether Directory Proxy Server automatically routes requests, or whether Directory Proxy Server relies on manual routing configuration.
This property can take the following values in addition to the default.
Directory Proxy Server automatically routes requests and ignores data view exclusion bases and alternate search bases.
Directory Proxy Server automatically routes requests but will take into consideration data view exclusion bases if present.
Directory Proxy Server does not automatically route requests. Instead, Directory Proxy Server routes requests according to the exclusion bases and alternate search bases specified in the data views.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dnReference |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property specifies the list of data views to which Directory Proxy Server routes client requests if data-view-routing-policy(5dpconf) is custom.
The value of this property is the name of one of the following configuration entities: jdbc-data-view, join-data-view, ldap-data-view, ldif-data-view.
The default behavior for this property is as follows: Proxy does not route requests.
This property is used to configure the following features:
Connection handlers define the resource limits and filters that apply to a connection, and the data views that are exposed to the connection.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
enumeration |
Default value |
Default behavior is not defined. |
Must be set |
Yes |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether Directory Proxy Server routes client requests to all routable data views or to a custom set of data views.
This property can take the following values in addition to the default.
All routable data views
Customized set of data views
This property is used to configure the following features:
Connection handlers define the resource limits and filters that apply to a connection, and the data views that are exposed to the connection.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
Default behavior is not defined. |
Must be set |
Yes |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
Yes |
This property specifies the database name of the JDBC data source.
This property is used to configure the following features:
A JDBC data source is defined for each relational database to which you want LDAP clients to have access. Currently, only one JDBC data source is supported per JDBC data view.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
No |
Is modifiable |
No |
Is multivalued |
No |
Requires restart |
No |
This property specifies the database user password of the JDBC data source.
This property is read-only. To change the password, use the db-pwd-file property.
The default behavior for this property is as follows: The proxy will not use any password to connect to the JDBC data source.
This property is used to configure the following features:
A JDBC data source is defined for each relational database to which you want LDAP clients to have access. Currently, only one JDBC data source is supported per JDBC data view.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
enumeration |
Default value |
clear-text |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the mechanism used to store authentication passwords.
This property can take the following values in addition to the default.
Passwords are stored in the clear
Passwords are stored using SHA
Passwords are stored using SSHA
This property is used to configure the following features:
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
password |
Default value |
No default is defined. |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
Yes |
This property specifies the file from which to read the database user password of the JDBC data source. The temporary file is read once, and the password is stored for future use.
This property takes a path to a file that contains the password value.
This property is used to configure the following features:
A JDBC data source is defined for each relational database to which you want LDAP clients to have access. Currently, only one JDBC data source is supported per JDBC data view.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
Default behavior is not defined. |
Must be set |
Yes |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
Yes |
This property specifies the database URL of the JDBC data source.
This property is used to configure the following features:
A JDBC data source is defined for each relational database to which you want LDAP clients to have access. Currently, only one JDBC data source is supported per JDBC data view.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
Yes |
This property specifies the database user of the JDBC data source.
The default behavior for this property is as follows: No user.
This property is used to configure the following features:
A JDBC data source is defined for each relational database to which you want LDAP clients to have access. Currently, only one JDBC data source is supported per JDBC data view.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
enumeration |
Default value |
info |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property sets the default log level for all categories of log message.
This property can take the following values in addition to the default.
Error logging
Warning logging
Informational logging
All logging levels
All logging disabled
This property is used to configure the following features:
The access log contains information about the requests being processed by the Directory Proxy Server.
The error logs contain information about the health of the Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
disabled |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the proportion of delete requests that are sent to the attached data source.
This property takes an integer.
The value of this property must be at least 1.
This property can also take the following values:
Do not forward any delete requests to the data source
This property is used to configure the following features:
A data source can be attached to one or more data source pools for load balancing and failover. When attached to a data source pool, a data source is called an attached data source.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
Default behavior is not defined. |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property enables you to attach a description to the feature.
This property is used to configure the following features:
Connection handlers define the resource limits and filters that apply to a connection, and the data views that are exposed to the connection.
A JDBC data source is defined for each relational database to which you want LDAP clients to have access. Currently, only one JDBC data source is supported per JDBC data view.
Requests from clients are distributed to a JDBC data source pool. A JDBC data source pool is defined for each JDBC data source.
A JDBC data view enables you to make a relational database accessible to LDAP client applications.
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
The common name of the LDAP data source
One or more data sources are attached to a data source pool for load balancing and failover.
An LDAP data view exposes data in an LDAP server to a client request and specifies the data source pool that responds to the request.
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
Request filtering policies control what data can be accessed by clients.
Resource limit policies define the maximum resources that Directory Proxy Server can process for a given connection handler.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
enumeration |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
Yes |
This property specifies the built-in algorithm used to distribute operations to data views that have the same base DN.
This property can take the following values in addition to the default.
Requests are distributed to data views based on the match between the parameters of the requests and one or more patterns.
Requests are distributed to data views based on the lexicographic value of the RDN specified in the request. Lexicographic bounds are taken from the value of the first RDN beneath the base DN of the data view.
Requests are distributed to data views based on the numeric value of the RDN specified in the request. The numeric value is taken from the value of the first RDN beneath the base DN of the data view.
Requests are distributed to data views based on the role of the data view in replication. The algorithm forces all write operations to be sent to all data sources in the data source pool, and all read operations to be sent to a single data source.
The default behavior for this property is as follows: No distribution algorithm is enabled
This property is used to configure the following features:
A JDBC data view enables you to make a relational database accessible to LDAP client applications.
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
An LDAP data view exposes data in an LDAP server to a client request and specifies the data source pool that responds to the request.
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property determines how the DN of entries in the secondary data view are constructed.
To be taken in account by the server, this property must be set on join data view if the join-rule-control-enabled property for join data view is set to true; otherwise it must be set on secondary data views. Only one DN join rule can be defined.
The default behavior for this property is as follows: No DN join rule is enabled
This property is used to configure the following features:
A JDBC data view enables you to make a relational database accessible to LDAP client applications.
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
An LDAP data view exposes data in an LDAP server to a client request and specifies the data source pool that responds to the request.
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property defines a list of attributes that contain DNs of entries.
When a DN is renamed by setting the dn-mapping-source-base-dn property, attributes in the portion of the DIT affected by renaming must also be renamed if those attributes contain DNs.
The default behavior for this property is as follows: No DN valued attributes to be mapped
This property is used to configure the following features:
A JDBC data view enables you to make a relational database accessible to LDAP client applications.
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
An LDAP data view exposes data in an LDAP server to a client request and specifies the data source pool that responds to the request.
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dn |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property defines a DN mapping.
When a client makes a request, the DN is rewritten to match that on the server side. When the result is returned to the client, the DN is changed back to match the client side.
This property takes a Distinguished Name (DN) value.
The default behavior for this property is as follows: No source suffix - do not perform DN mapping
This property is used to configure the following features:
A JDBC data view enables you to make a relational database accessible to LDAP client applications.
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
An LDAP data view exposes data in an LDAP server to a client request and specifies the data source pool that responds to the request.
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
Default behavior is not defined. |
Must be set |
Yes |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies a DN pattern that controls how DNs are constructed in the data view.
This property is used to configure the following features:
A JDBC object class maps an LDAP object class to one or more relational database tables. A JDBC object class can obtain its information from more than one table. However, one table must be defined as the primary table, and additional tables are defined as secondary tables.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
any |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property specifies a set of domain name suffixes. A client's network domain must match at least one of the suffixes in order for the connection to be accepted by the connection handler.
The domain name can be in one of the following formats:
Full name. For example, box.eng.sun.com.
Suffix name. For example, .eng.sun.com.
Fully qualified name of the local host.
The default behavior for this property is as follows: All domains are accepted
This property is used to configure the following features:
Connection handlers define the resource limits and filters that apply to a connection, and the data views that are exposed to the connection.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
Default behavior is not defined. |
Must be set |
Yes |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the JDBC driver class of the JDBC data source.
This property is used to configure the following features:
A JDBC data source is defined for each relational database to which you want LDAP clients to have access. Currently, only one JDBC data source is supported per JDBC data view.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
Yes |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property specifies the JDBC driver jar of the JDBC data source.
The default behavior for this property is as follows: The proxy will not use any password to connect to the JDBC data source.
This property is used to configure the following features:
A JDBC data source is defined for each relational database to which you want LDAP clients to have access. Currently, only one JDBC data source is supported per JDBC data view.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
false |
Must be set |
Yes |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether or not Directory Proxy Server should use email based alert notification.
This property is true or false.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
local |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the from-address that alert messages should use.
The syntax of this string is EMAIL_ADDRESS.
A valid email address
The value of this property must match the pattern ^.+@.+$.
The default behavior for this property is as follows: The default sender is dps@localhost
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
Proxy Server Administrative Alert |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the subject line that alert messages should use.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
false |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether or not Directory Proxy Server should add the alert code to the subject line for alert messages.
This property is true or false.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
root@localhost |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property specifies the to-address that alert messages should use.
The syntax of this string is EMAIL_ADDRESS.
A valid email address
The value of this property must match the pattern ^.+@.+$.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
ipAddress |
Default value |
localhost |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the host name of the SMTP server to which alert messages should be sent.
This property takes an IP address or host name.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
smtp |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the port number of the SMTP server to which alert messages should be sent.
This property takes an integer.
The value of this property must be at least 1.
The value of this property must be no greater than 65535.
This property can also take the following values:
Standard smtp port
Standard smtp over SSL port
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
false |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag that indicates whether or not consecutive requests from the same client should be directed to the same LDAP data source.
This property is true or false.
This property is used to configure the following features:
One or more data sources are attached to a data source pool for load balancing and failover.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
enumeration |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property specifies the list of enabled administration alerts.
This property can take the following values in addition to the default.
Server startup
Clean server shutdown
Abrupt server shutdown
Configuration reloaded
Configuration reload failure due to bad configuration - run-time configuration not impacted
Configuration reload failure due to bad configuration - run-time configuration possibly impacted
Data source is currently unavailable
Data source is available again
Unable to listen for incoming connections or requests
Inconsistency detected between data sources
The default behavior for this property is as follows: No administration alerts are enabled
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
false |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether or not consecutive requests from the same client should be directed exclusively to the same data view.
This property is true or false.
This property is used to configure the following features:
Connection handlers define the resource limits and filters that apply to a connection, and the data views that are exposed to the connection.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
selectionEnumeration |
Default value |
JRE |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property specifies the list of enabled SSL cipher suites.
This property takes its possible values from an external component.
The default behavior for this property is as follows: All SSL cipher suites enabled by the Java Run Time running the proxy.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
selectionEnumeration |
Default value |
JRE |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property specifies the list of enabled SSL protocols.
This property takes its possible values from an external component.
The default behavior for this property is as follows: All SSL protocols enabled by the Java Run Time running the proxy.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
true |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies whether log files are rotated or not.
This property is true or false.
This property is used to configure the following features:
The access log contains information about the requests being processed by the Directory Proxy Server.
The error logs contain information about the health of the Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
false |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether or not Directory Proxy Server should map the bind DN of a user to an alternate bind DN. The identity mapping is configured in the user entry in a remote LDAP server.
This property is true or false.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
false |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether or not Directory Proxy Server should map the user identity to the identity of an alternate user. The identity mapping is configured in the Directory Proxy Server.
This property is true or false.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
true |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether or not Directory Proxy Server should encrypt passwords that are stored in the configuration.
This property is true or false.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dn |
Default value |
Default behavior is not defined. |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property specifies the DNs of subtrees which are excluded by a data view.
When a subordinate data view is created, Directory Proxy Server automatically excludes the subordinate subtree from the superior data view. However, the automatic configuration can be disabled and the feature can be configured manually.
This property takes a Distinguished Name (DN) value.
This property is used to configure the following features:
A JDBC data view enables you to make a relational database accessible to LDAP client applications.
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
An LDAP data view exposes data in an LDAP server to a client request and specifies the data source pool that responds to the request.
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property specifies the jar file that contains custom plugins, such as custom distribution plugins.
The default behavior for this property is as follows: Proxy uses no extension jar file.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property defines the relationship between the primary and secondary data views.
A filter join rule indicates how an entry should be retrieved from the secondary data view based on something in the primary data view.
For example, uid=\${primary-view-name.uid} is a valid property value.
To be taken in account by the server, this property must be set on join data view if the join-rule-control-enabled property for join data view is set to true; otherwise it must be set on secondary data views.
A filter join rule takes the form of an LDAP filter that is used to construct an attribute from one or more attributes from the primary data view.
The default behavior for this property is as follows: No filter join rule is applied
This property is used to configure the following features:
A JDBC data view enables you to make a relational database accessible to LDAP client applications.
A JDBC table is created for each relational database table that will be used in the JDBC data view. When you create a JDBC table you specify the name of the table in the relational database, and the name you want to assign to this table in the JDBC data view.
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
An LDAP data view exposes data in an LDAP server to a client request and specifies the data source pool that responds to the request.
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property defines the physical value of the attribute.
The default behavior for this property is as follows: For some transformations, this property is required for the proxy to apply the transformation.
This property is used to configure the following features:
Virtual data transformations create a virtual data view from a physical data view. Practically, you never define a virtual data view. Instead, you specify the transformations that you require and define these on an existing physical data view. A transformation performs a specific action in a certain direction. The direction of a transformation determines the transformation model. When you define a virtual data transformation, you create a virtual attribute that exists only in the context of the virtual data view.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
ipAddressMask |
Default value |
any |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property specifies a set of IPv4 or IPv6 address masks. The IP address of a client connection must match at least one of the masks in order for the connection to be accepted by the connection handler. The IP address can be in one of the following formats:
IP address in dotted decimal form.
IP address and bits, in the form of network number/mask bits.
IP address and quad, in the form of a pair of dotted-decimal quads.
All addresses, a catch-all for clients that are not placed into other, higher priority, groups.
0.0.0.0. This address is for groups to which initial membership is not considered. For example, for groups that clients switch to after their initial bind.
IP address of the local host.
This property takes an IP address such as 168.192.0.*.
The default behavior for this property is as follows: All IP addresses are accepted
This property is used to configure the following features:
Connection handlers define the resource limits and filters that apply to a connection, and the data views that are exposed to the connection.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
true |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether or not the data view is accepting requests.
This property is true or false.
This property is used to configure the following features:
Connection handlers define the resource limits and filters that apply to a connection, and the data views that are exposed to the connection.
A JDBC data source is defined for each relational database to which you want LDAP clients to have access. Currently, only one JDBC data source is supported per JDBC data view.
A JDBC data view enables you to make a relational database accessible to LDAP client applications.
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
The common name of the LDAP data source
An LDAP data view exposes data in an LDAP server to a client request and specifies the data source pool that responds to the request.
The LDAP listener represents the network interface of Directory Proxy Server.
The LDAP listener represents the network interface of Directory Proxy Server.
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
false |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether or not the data view should accept read operations only.
This property is true or false.
This property is used to configure the following features:
A JDBC data source is defined for each relational database to which you want LDAP clients to have access. Currently, only one JDBC data source is supported per JDBC data view.
A JDBC data view enables you to make a relational database accessible to LDAP client applications.
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
The common name of the LDAP data source
An LDAP data view exposes data in an LDAP server to a client request and specifies the data source pool that responds to the request.
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
false |
Must be set |
No |
Is modifiable |
No |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether Directory Proxy Server must be restarted in order for configuration changes to take effect.
This property is true or false.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
true |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether or not the data view can be accessed by a connection handler if the data-view-routing-policy(5dpconf) property of the connection handler is all-routable.
This property is true or false.
This property is used to configure the following features:
A JDBC data view enables you to make a relational database accessible to LDAP client applications.
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
An LDAP data view exposes data in an LDAP server to a client request and specifies the data source pool that responds to the request.
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
true |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies that an LDAP entry has only one matching row in the relational database table.
This property is true or false.
This property is used to configure the following features:
A JDBC table is created for each relational database table that will be used in the JDBC data view. When you create a JDBC table you specify the name of the table in the relational database, and the name you want to assign to this table in the JDBC data view.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
false |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether or not client connections must use SSL in order for them to be accepted by the connection handler.
This property is true or false.
This property is used to configure the following features:
Connection handlers define the resource limits and filters that apply to a connection, and the data views that are exposed to the connection.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dnReference |
Default value |
Default behavior is not defined. |
Must be set |
Yes |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the JDBC data source pool that should be used by the JDBC data view.
This property has as its value the name of a jdbc-data-source-pool configuration entity.
This property is used to configure the following features:
A JDBC data view enables you to make a relational database accessible to LDAP client applications.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
false |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies whether Server uses "filter-join-rule" and "dn-join-rule" property values stored on join views.
This property is true or false.
This property is used to configure the following features:
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
ipAddress |
Default value |
Default behavior is not defined. |
Must be set |
Yes |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
Yes |
This property specifies the address of the LDAP data source.
This property takes an IP address or host name.
This property is used to configure the following features:
The common name of the LDAP data source
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dnReference |
Default value |
Default behavior is not defined. |
Must be set |
Yes |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the name of the LDAP data source pool to be used by the LDAP data view.
This property has as its value the name of a ldap-data-source-pool configuration entity.
This property is used to configure the following features:
An LDAP data view exposes data in an LDAP server to a client request and specifies the data source pool that responds to the request.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
ldap |
Must be set |
Yes |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
Yes |
This property specifies the LDAP port of the LDAP data source.
This property takes an integer.
The value of this property must be at least 1.
The value of this property must be no greater than 65535.
This property can also take the following values:
Standard ldap port
Standard ldaps port
This property is used to configure the following features:
The common name of the LDAP data source
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
ldaps |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
Yes |
This property specifies the LDAPS port of the LDAP data source.
This property takes an integer.
The value of this property must be at least 1.
The value of this property must be no greater than 65535.
This property can also take the following values:
Standard ldap port
Standard ldaps port
This property is used to configure the following features:
The common name of the LDAP data source
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
cis |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property defines the syntax used to construct the LDAP attribute from an entry in the relational database table.
This property is used to configure the following features:
JDBC attributes map LDAP attributes to entries in relational database tables. The definition of a JDBC attribute includes the name of the LDAP attribute, and the relational database table and column in which the corresponding information is located.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
Default behavior is not defined. |
Must be set |
Yes |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the name of a file on the Directory Proxy Server filesystem where the LDIF data is contained.
This property is used to configure the following features:
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
all |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property specifies the set of attributes that are examined by the distribution algorithm when distribution-algorithm(5dpconf) is lexicographic.
The default behavior for this property is as follows: All attributes
This property is used to configure the following features:
A JDBC data view enables you to make a relational database accessible to LDAP client applications.
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
An LDAP data view exposes data in an LDAP server to a client request and specifies the data source pool that responds to the request.
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the lower bound of the distribution when distribution-algorithm(5dpconf) is lexicographic.
For example, consider a configuration with a first data view that handles [A-M] inclusive, and a second data view that handles [N-Z] inclusive. For the first data view, you set the lower bound to A, and the upper bound to M. For the second data view, you set the lower bound to N, and the upper bound to Z.
The default behavior for this property is as follows: No lower limit
This property is used to configure the following features:
A JDBC data view enables you to make a relational database accessible to LDAP client applications.
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
An LDAP data view exposes data in an LDAP server to a client request and specifies the data source pool that responds to the request.
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the upper bound of the distribution when distribution-algorithm(5dpconf) is lexicographic.
For example, consider a configuration with a first data view that handles [A-M] inclusive, and a second data view that handles [N-Z] inclusive. For the first data view, you set the lower bound to A, and the upper bound to M. For the second data view, you set the lower bound to N, and the upper bound to Z.
The default behavior for this property is as follows: No upper limit
This property is used to configure the following features:
A JDBC data view enables you to make a relational database accessible to LDAP client applications.
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
An LDAP data view exposes data in an LDAP server to a client request and specifies the data source pool that responds to the request.
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
ipAddress |
Default value |
0.0.0.0 |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
Yes |
This property specifies the IP address that Directory Proxy Server should listen on.
This property takes an IP address or host name.
This property is used to configure the following features:
The LDAP listener represents the network interface of Directory Proxy Server.
The LDAP listener represents the network interface of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
Default behavior is not defined. |
Must be set |
Yes |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
Yes |
This property specifies the IP port that Directory Proxy Server should listen on.
This property takes an integer.
The value of this property must be at least 1.
The value of this property must be no greater than 65535.
This property can also take the following values:
Standard ldap port
Standard ldaps port
This property is used to configure the following features:
The LDAP listener represents the network interface of Directory Proxy Server.
The LDAP listener represents the network interface of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
enumeration |
Default value |
proportional |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
Yes |
This property specifies the algorithm that determines how operations are distributed to the data sources attached to a data source pool.
This property can take the following values in addition to the default.
Requests are distributed exclusively to the data source with the highest weight. If that data source fails, requests are distributed exclusively to the data source with the next highest weight.
Requests are distributed to the data source with the highest weight until the data source approaches its saturation level. Requests are then sent to the data source with the next highest weight .
When the data source with the highest weight drops below its saturation level, Directory Proxy Server resumes sending requests to that data source.
Requests are distributed to data sources in proportion to the weight of a data source and its cumulative load.
Requests are allocated a hash value according to the type of the request and the properties of the request. Hash values are allocated to data sources in proportion to the weight of a data source and its cumulative load.
This property is used to configure the following features:
One or more data sources are attached to a data source pool for load balancing and failover.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dataSize |
Default value |
0b |
Must be set |
Yes |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the size of the error log buffer. When the buffer is full, it is flushed to disk.
This property is expressed in bytes.
The value of this property must be at least 0b.
The value of this property must be no greater than 100k.
This property is used to configure the following features:
The access log contains information about the requests being processed by the Directory Proxy Server.
The error logs contain information about the health of the Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
Default behavior is not defined. |
Must be set |
Yes |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the path name to the log file.
This property is used to configure the following features:
The access log contains information about the requests being processed by the Directory Proxy Server.
The error logs contain information about the health of the Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
600 |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the permissions on the log file.
The syntax of this string is OCTAL_MODE.
A unix style octal permission, for example, 600.
The value of this property must match the pattern ^[0-7][0-7][0-7]$.
This property is used to configure the following features:
The access log contains information about the requests being processed by the Directory Proxy Server.
The error logs contain information about the health of the Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
accessLogLevel |
Default value |
inherited |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the log level for events related to client connections.
This property can take the following values.
All messages are included in the log file. In most cases, this setting produces the same results as the info setting. In certain situations, this setting enables additional debugging messages to be logged.
Errors, warnings and informational messages are included in the log file.
The log level is inherited from the value of the default-log-level property.
No messages are included in the log file.
This property is used to configure the following features:
The access log contains information about the requests being processed by the Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
accessLogLevel |
Default value |
inherited |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the log level for events related to client disconnections.
This property can take the following values.
All messages are included in the log file. In most cases, this setting produces the same results as the info setting. In certain situations, this setting enables additional debugging messages to be logged.
Errors, warnings and informational messages are included in the log file.
The log level is inherited from the value of the default-log-level property.
No messages are included in the log file.
This property is used to configure the following features:
The access log contains information about the requests being processed by the Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
accessLogLevel |
Default value |
inherited |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the log level for events related to client operations.
This property can take the following values.
All messages are included in the log file. In most cases, this setting produces the same results as the info setting. In certain situations, this setting enables additional debugging messages to be logged.
Errors, warnings and informational messages are included in the log file.
The log level is inherited from the value of the default-log-level property.
No messages are included in the log file.
This property is used to configure the following features:
The access log contains information about the requests being processed by the Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
logLevel |
Default value |
inherited |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the logging level for events related to configuration.
This property can take the following values.
All messages are included in the log file. In most cases, this setting produces the same results as the info setting. In certain situations, this setting enables additional debugging messages to be logged.
Only error messages are included in the log file.
Errors, warnings and informational messages are included in the log file.
The log level is inherited from the value of the default-log-level property.
No messages are included in the log file.
Error messages and warning messages are included in the log file.
This property is used to configure the following features:
The error logs contain information about the health of the Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
accessLogLevel |
Default value |
inherited |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the log level for events related to connection handlers.
This property can take the following values.
All messages are included in the log file. In most cases, this setting produces the same results as the info setting. In certain situations, this setting enables additional debugging messages to be logged.
Errors, warnings and informational messages are included in the log file.
The log level is inherited from the value of the default-log-level property.
No messages are included in the log file.
This property is used to configure the following features:
The access log contains information about the requests being processed by the Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
logLevel |
Default value |
inherited |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the logging level for events related to data sources.
This property can take the following values.
All messages are included in the log file. In most cases, this setting produces the same results as the info setting. In certain situations, this setting enables additional debugging messages to be logged.
Only error messages are included in the log file.
Errors, warnings and informational messages are included in the log file.
The log level is inherited from the value of the default-log-level property.
No messages are included in the log file.
Error messages and warning messages are included in the log file.
This property is used to configure the following features:
The error logs contain information about the health of the Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
accessLogLevel |
Default value |
inherited |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the log level for events related to data sources.
This property can take the following values.
All messages are included in the log file. In most cases, this setting produces the same results as the info setting. In certain situations, this setting enables additional debugging messages to be logged.
Errors, warnings and informational messages are included in the log file.
The log level is inherited from the value of the default-log-level property.
No messages are included in the log file.
This property is used to configure the following features:
The access log contains information about the requests being processed by the Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
accessLogLevel |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the log level for detailed events related to data sources.
This property can take the following values.
All messages are included in the log file. In most cases, this setting produces the same results as the info setting. In certain situations, this setting enables additional debugging messages to be logged.
Errors, warnings and informational messages are included in the log file.
The log level is inherited from the value of the default-log-level property.
No messages are included in the log file.
This property is used to configure the following features:
The access log contains information about the requests being processed by the Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
logLevel |
Default value |
inherited |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
The logging level for events related to problems with the internal server.
This property can take the following values.
All messages are included in the log file. In most cases, this setting produces the same results as the info setting. In certain situations, this setting enables additional debugging messages to be logged.
Only error messages are included in the log file.
Errors, warnings and informational messages are included in the log file.
The log level is inherited from the value of the default-log-level property.
No messages are included in the log file.
Error messages and warning messages are included in the log file.
This property is used to configure the following features:
The error logs contain information about the health of the Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
logLevel |
Default value |
inherited |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the logging level for events related to client operation decoding.
This property can take the following values.
All messages are included in the log file. In most cases, this setting produces the same results as the info setting. In certain situations, this setting enables additional debugging messages to be logged.
Only error messages are included in the log file.
Errors, warnings and informational messages are included in the log file.
The log level is inherited from the value of the default-log-level property.
No messages are included in the log file.
Error messages and warning messages are included in the log file.
This property is used to configure the following features:
The error logs contain information about the health of the Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
logLevel |
Default value |
inherited |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the logging level for events related to client operation processing.
This property can take the following values.
All messages are included in the log file. In most cases, this setting produces the same results as the info setting. In certain situations, this setting enables additional debugging messages to be logged.
Only error messages are included in the log file.
Errors, warnings and informational messages are included in the log file.
The log level is inherited from the value of the default-log-level property.
No messages are included in the log file.
Error messages and warning messages are included in the log file.
This property is used to configure the following features:
The error logs contain information about the health of the Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
logLevel |
Default value |
inherited |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the logging level for events related to plugins.
This property can take the following values.
All messages are included in the log file. In most cases, this setting produces the same results as the info setting. In certain situations, this setting enables additional debugging messages to be logged.
Only error messages are included in the log file.
Errors, warnings and informational messages are included in the log file.
The log level is inherited from the value of the default-log-level property.
No messages are included in the log file.
Error messages and warning messages are included in the log file.
This property is used to configure the following features:
The error logs contain information about the health of the Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
logLevel |
Default value |
inherited |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the logging level for events related to server shutdown.
This property can take the following values.
All messages are included in the log file. In most cases, this setting produces the same results as the info setting. In certain situations, this setting enables additional debugging messages to be logged.
Only error messages are included in the log file.
Errors, warnings and informational messages are included in the log file.
The log level is inherited from the value of the default-log-level property.
No messages are included in the log file.
Error messages and warning messages are included in the log file.
This property is used to configure the following features:
The error logs contain information about the health of the Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
logLevel |
Default value |
inherited |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the logging level for events related to server startup.
This property can take the following values.
All messages are included in the log file. In most cases, this setting produces the same results as the info setting. In certain situations, this setting enables additional debugging messages to be logged.
Only error messages are included in the log file.
Errors, warnings and informational messages are included in the log file.
The log level is inherited from the value of the default-log-level property.
No messages are included in the log file.
Error messages and warning messages are included in the log file.
This property is used to configure the following features:
The error logs contain information about the health of the Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dataSize |
Default value |
0b |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
If the log-rotation-policy(5dpconf) is periodic, this property specifies a minimum file size. The log files are rotated at the specified interval if the file size is bigger than the specified size.
This property is expressed in bytes.
The value of this property must be at least 0b.
The value of this property must be no greater than 2g.
This property is used to configure the following features:
The access log contains information about the requests being processed by the Directory Proxy Server.
The error logs contain information about the health of the Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
1h |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the interval at which log files are rotated when log-rotation-policy(5dpconf) is periodic.
This property is set in conjunction with the following properties: log-rotation-start-time(5dpconf) and log-rotation-start-day(5dpconf).
The syntax of this string is <count>[mwdh].
The value for log-rotation-frequency(5dpconf) is a time period of the form <count>[mwdh]. For example, a value of 2w means that the logs are rotated every 2 weeks.
The value of this property must match the pattern ^[0-9]+[mMwWdDhH]$.
This property is used to configure the following features:
The access log contains information about the requests being processed by the Directory Proxy Server.
The error logs contain information about the health of the Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
enumeration |
Default value |
Default behavior is not defined. |
Must be set |
Yes |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the policy used to rotate log files.
This property can take the following values in addition to the default.
Rotate log files when they reach the size specified by the log-rotation-size(5dpconf) property.
Rotate log files at the time and interval specified by the following properties:
If the rotation policy is periodic and log-rotation-size(5dpconf) is set, the log file is rotated at the specified interval IF the file size is bigger than the specified size.
This property is used to configure the following features:
The access log contains information about the requests being processed by the Directory Proxy Server.
The error logs contain information about the health of the Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dataSize |
Default value |
100m |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
If the log-rotation-policy(5dpconf) is size, this property specifies the file size at which log files are automatically rotated.
This property is expressed in bytes.
The value of this property must be at least 1m.
The value of this property must be no greater than 2g.
This property is used to configure the following features:
The access log contains information about the requests being processed by the Directory Proxy Server.
The error logs contain information about the health of the Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
1 |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the day-of-the-week or day-of-the-month that log files are rotated when log-rotation-policy(5dpconf) is periodic.
This property is set in conjunction with the following properties: log-rotation-start-time(5dpconf) and log-rotation-frequency(5dpconf).
This property takes an integer.
The value of this property must be at least 1.
The value of this property must be no greater than 31.
This property is used to configure the following features:
The access log contains information about the requests being processed by the Directory Proxy Server.
The error logs contain information about the health of the Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
0000 |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the time of day at which log files are rotated when the log-rotation-policy(5dpconf) is periodic.
This property is set in conjunction with the following properties: log-rotation-start-day(5dpconf) and log-rotation-frequency(5dpconf).
The syntax of this string is TIME.
The value for log-rotation-start-time is a time of day of the form hhmm.
The value of this property must match the pattern ^((2[0-3])|([0-1][0-9]))[0-5][0-9]$.
This property is used to configure the following features:
The access log contains information about the requests being processed by the Directory Proxy Server.
The error logs contain information about the health of the Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
true |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies whether or not search filters are included in log messages.
This property is true or false.
This property is used to configure the following features:
The access log contains information about the requests being processed by the Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dn |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the distinguished name of the user that the client is mapped to if enable-user-mapping(5dpconf) is true.
The distinguished name of the client is specified by user-bind-dn(5dpconf).
This property takes a Distinguished Name (DN) value.
The default behavior for this property is as follows: The proxy maps to the identity defined as the anonymous mapping.
This property is used to configure the following features:
In user mapping, a client identity is mapped to the identity of an alternate user. After a BIND operation, the Directory Proxy Server submits subsequent operations as the alternate user.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
No |
Is modifiable |
No |
Is multivalued |
No |
Requires restart |
No |
This property specifies the password of the user that the client is mapped to if enable-user-mapping(5dpconf) is true.
The password of the client is specified by user-bind-pwd(5dpconf).
This property is read-only. To change the password, use the mapped-bind-pwd-file property.
The default behavior for this property is as follows: The proxy will not use any password associated to this mapping
This property is used to configure the following features:
In user mapping, a client identity is mapped to the identity of an alternate user. After a BIND operation, the Directory Proxy Server submits subsequent operations as the alternate user.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
password |
Default value |
No default is defined. |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the file from which to read the password of the user that the client is mapped to if enable-user-mapping(5dpconf) is true.
The password of the client is specified by user-bind-pwd(5dpconf). The temporary file is read once, and the password is stored for future use.
This property takes a path to a file that contains the password value.
This property is used to configure the following features:
In user mapping, a client identity is mapped to the identity of an alternate user. After a BIND operation, the Directory Proxy Server submits subsequent operations as the alternate user.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
duration |
Default value |
unlimited |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the maximum age (in months, weeks or days) that a log file can reach before it is deleted.
The duration is expressed in seconds.
The value of this property must be at least 1d.
This property is used to configure the following features:
The access log contains information about the requests being processed by the Directory Proxy Server.
The error logs contain information about the health of the Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
unlimited |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the maximum number of simultaneous connections from a single client permitted by associated connection handlers.
This property takes an integer.
The value of this property must be at least 1.
The default behavior for this property is as follows: No limit
This property is used to configure the following features:
Resource limit policies define the maximum resources that Directory Proxy Server can process for a given connection handler.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
128 |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the maximum size of the listener's new connection queue. When the queue is full, new connections are rejected.
This property takes an integer.
The value of this property must be at least 1.
This property is used to configure the following features:
The LDAP listener represents the network interface of Directory Proxy Server.
The LDAP listener represents the network interface of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
unlimited |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the maximum number of simultaneous connections permitted by associated connection handlers.
This property takes an integer.
The value of this property must be at least 1.
The default behavior for this property is as follows: No limit
This property is used to configure the following features:
Resource limit policies define the maximum resources that Directory Proxy Server can process for a given connection handler.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dataSize |
Default value |
unlimited |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the maximum size of an LDAP message. Messages above the maximum size are not accepted by the listener.
This property is expressed in bytes.
The value of this property must be at least 4k.
The value of this property must be no greater than 2g.
This property is used to configure the following features:
The LDAP listener represents the network interface of Directory Proxy Server.
The LDAP listener represents the network interface of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
10 |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the maximum number of log files that are preserved.
This property takes an integer.
The value of this property must be at least 0.
This property is used to configure the following features:
The access log contains information about the requests being processed by the Directory Proxy Server.
The error logs contain information about the health of the Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
unlimited |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the maximum number of simultaneous operations per connection that is allowed by the associated connection handlers.
This property takes an integer.
The value of this property must be at least 1.
The default behavior for this property is as follows: No limit
This property is used to configure the following features:
Resource limit policies define the maximum resources that Directory Proxy Server can process for a given connection handler.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dataSize |
Default value |
unlimited |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the maximum log size in bytes, kilobytes, Megabytes or Gigabytes.
This property is expressed in bytes.
The value of this property must be at least 1M.
This property is used to configure the following features:
The access log contains information about the requests being processed by the Directory Proxy Server.
The error logs contain information about the health of the Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
unlimited |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the maximum number of operations per connection that is allowed by the associated connection handlers.
This property takes an integer.
The value of this property must be at least 1.
The default behavior for this property is as follows: No limit
This property is used to configure the following features:
Resource limit policies define the maximum resources that Directory Proxy Server can process for a given connection handler.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dataSize |
Default value |
1M |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the minimum allowed free disk space for logs in bytes, kilobytes, Megabytes, or Gigabytes.
This property is expressed in bytes.
The value of this property must be at least 1M.
The value of this property cannot be unlimited.
This property is used to configure the following features:
The access log contains information about the requests being processed by the Directory Proxy Server.
The error logs contain information about the health of the Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
unlimited |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the minimum length of a substring in a search filter.
This property takes an integer.
The value of this property must be at least 1.
This property can also take the following values:
No limit
Substring filters prohibited
This property is used to configure the following features:
Resource limit policies define the maximum resources that Directory Proxy Server can process for a given connection handler.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
enumeration |
Default value |
Default behavior is not defined. |
Must be set |
Yes |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property defines the transformation model. The transformation model is determined by the direction of a transformation, in other words, whether the transformation is applied during the request, during the response, or both.
This property can take the following values in addition to the default.
Mapping
Store and forget
Default virtual value
This property is used to configure the following features:
Virtual data transformations create a virtual data view from a physical data view. Practically, you never define a virtual data view. Instead, you specify the transformations that you require and define these on an existing physical data view. A transformation performs a specific action in a certain direction. The direction of a transformation determines the transformation model. When you define a virtual data transformation, you create a virtual attribute that exists only in the context of the virtual data view.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
disabled |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the proportion of modify DN requests that are sent to the attached data source.
This property takes an integer.
The value of this property must be at least 1.
This property can also take the following values:
Do not forward any modify DN requests to the data source
This property is used to configure the following features:
A data source can be attached to one or more data source pools for load balancing and failover. When attached to a data source pool, a data source is called an attached data source.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
disabled |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the proportion of modify requests that are sent to the attached data source.
This property takes an integer.
The value of this property must be at least 1.
This property can also take the following values:
Do not forward any modify requests to the data source
This property is used to configure the following features:
A data source can be attached to one or more data source pools for load balancing and failover. When attached to a data source pool, a data source is called an attached data source.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dn |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the DN used for binding to an LDAP data source to check the data source's availability.
This property takes a Distinguished Name (DN) value.
The default behavior for this property is as follows: Proxy uses an anonymous access to access the LDAP data source.
This property is used to configure the following features:
The common name of the LDAP data source
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
No |
Is modifiable |
No |
Is multivalued |
No |
Requires restart |
No |
This property specifies the password used for binding to an LDAP data source to check the data source's availability.
This property is read-only. To change the password, use the monitoring-bind-pwd-file property.
The default behavior for this property is as follows: Proxy uses an anonymous access to access the LDAP data source.
This property is used to configure the following features:
The common name of the LDAP data source
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
password |
Default value |
No default is defined. |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the file from which to read the password used for binding to an LDAP data source to check the data source''s availability. The DN used for binding to an LDAP data source to check the data source''s availability is specified by monitoring-bind-pwd(5dpconf). The temporary file is read once, and the password stored for future use.
This property takes a path to a file that contains the password value.
This property is used to configure the following features:
The common name of the LDAP data source
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
duration |
Default value |
5000 |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the maximum length of time that the availability monitor waits to establish a connection to the LDAP data source.
The duration is expressed in milliseconds.
The value of this property must be at least 1.
This property is used to configure the following features:
The common name of the LDAP data source
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dn |
Default value |
|
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the DN of a target entry in a search operation. The availability monitor uses the search operation to test a connection to the data source.
This property takes a Distinguished Name (DN) value.
This property is used to configure the following features:
The common name of the LDAP data source
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
duration |
Default value |
5000 |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the maximum length of time that the availability monitor tries to retrieve the target entry in a search operation. The availability monitor uses the search operation to test a connection to the data source.
The duration is expressed in milliseconds.
The value of this property must be at least 1.
This property is used to configure the following features:
The common name of the LDAP data source
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
duration |
Default value |
120 |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
The availability monitor polls inactive connections to keep them alive. This property specifies how long a connection can be inactive before the availability monitor performs a search on the idle connection to keep it alive.
The duration is expressed in seconds.
The value of this property must be at least 1.
This property is used to configure the following features:
The common name of the LDAP data source
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
duration |
Default value |
30 |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the polling interval. If a connection is found to be down, the availability monitor polls the connection at this interval to detect its recovery.
The duration is expressed in seconds.
The value of this property must be at least 1.
The value of this property cannot be unlimited.
This property is used to configure the following features:
The common name of the LDAP data source
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
enumeration |
Default value |
proactive |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the monitoring mode of a data source.
This property can take the following values in addition to the default.
The availability monitor checks the availability of the data source continuously.
The availability monitor checks the availability of the data source only after a client request times out, or when an I/O error has been detected.
This property is used to configure the following features:
The common name of the LDAP data source
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
(|(objectClass=*)(objectClass=ldapSubEntry)) |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the filter used in a search operation. The availability monitor uses the search operation to test a connection to the data source.
This property is used to configure the following features:
The common name of the LDAP data source
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property provides a list of attributes that are not exposed by the data view.
The default behavior for this property is as follows: No restriction is applied on the list of viewable attributes.
This property is used to configure the following features:
A JDBC data view enables you to make a relational database accessible to LDAP client applications.
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
An LDAP data view exposes data in an LDAP server to a client request and specifies the data source pool that responds to the request.
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property provides a list of attributes that cannot be written through the data view.
The default behavior for this property is as follows: No restriction is applied on the list of writable attributes.
This property is used to configure the following features:
A JDBC data view enables you to make a relational database accessible to LDAP client applications.
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
An LDAP data view exposes data in an LDAP server to a client request and specifies the data source pool that responds to the request.
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
20 |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
Yes |
This property specifies the number of connections that should be made to a data source so that search operations can be performed in parallel.
This property takes an integer.
The value of this property must be at least 1.
This property can also take the following values:
No limit
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
2 |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
Yes |
This property specifies the number of threads allocated to the listener to handle simultaneous client connections and requests.
This property takes an integer.
The value of this property must be at least 1.
The value of this property must be no greater than 64.
This property is used to configure the following features:
The LDAP listener represents the network interface of Directory Proxy Server.
The LDAP listener represents the network interface of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
50 |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
Yes |
This property specifies the number of worker threads available for processing operations in the work queue.
This property takes an integer.
The value of this property must be at least 1.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
10 |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the number of new connections that are created when the server needs more connections for bind operations.
This property takes an integer.
The value of this property must be at least 1.
This property is used to configure the following features:
The common name of the LDAP data source
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
10 |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
Yes |
This property specifies the initial number of connections that should be made to an LDAP data source to perform bind operations.
This property takes an integer.
The value of this property must be at least 0.
This property is used to configure the following features:
The common name of the LDAP data source
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
1024 |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the maximum number of connections that can be made to an LDAP data source to perform bind operations.
This property takes an integer.
The value of this property must be at least 1.
This property can also take the following values:
This value means no limit is set for this property.
This property is used to configure the following features:
The common name of the LDAP data source
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
all |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property specifies the set of attributes that are examined by the distribution algorithm when the distribution-algorithm(5dpconf) is numeric.
The default behavior for this property is as follows: All attributes
This property is used to configure the following features:
A JDBC data view enables you to make a relational database accessible to LDAP client applications.
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
An LDAP data view exposes data in an LDAP server to a client request and specifies the data source pool that responds to the request.
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
false |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether or not the associated data view should act as a default data view in the numeric distribution set and handle requests that contain non-numeric target RDNs.
This property is true or false.
This property is used to configure the following features:
A JDBC data view enables you to make a relational database accessible to LDAP client applications.
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
An LDAP data view exposes data in an LDAP server to a client request and specifies the data source pool that responds to the request.
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the lower bound of distribution when the distribution-algorithm(5dpconf) is numeric.
This property takes an integer.
The default behavior for this property is as follows: No lower limit
This property is used to configure the following features:
A JDBC data view enables you to make a relational database accessible to LDAP client applications.
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
An LDAP data view exposes data in an LDAP server to a client request and specifies the data source pool that responds to the request.
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the upper bound of distribution when the distribution-algorithm(5dpconf) is numeric.
This property takes an integer.
The default behavior for this property is as follows: No upper limit
This property is used to configure the following features:
A JDBC data view enables you to make a relational database accessible to LDAP client applications.
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
An LDAP data view exposes data in an LDAP server to a client request and specifies the data source pool that responds to the request.
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
10 |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the number of new connections that are created when the server needs more connections for read operations.
This property takes an integer.
The value of this property must be at least 1.
This property is used to configure the following features:
The common name of the LDAP data source
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
10 |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
Yes |
This property specifies the initial number of connections that should be made to an LDAP data source to perform read operations.
This property takes an integer.
The value of this property must be at least 0.
This property is used to configure the following features:
The common name of the LDAP data source
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
1024 |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the maximum number of connections that can be made to an LDAP data source to perform read operations.
This property takes an integer.
The value of this property must be at least 1.
This property can also take the following values:
This value means no limit is set for this property.
This property is used to configure the following features:
The common name of the LDAP data source
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
10 |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the number of new connections that are created when the server needs more connections for write operations.
This property takes an integer.
The value of this property must be at least 1.
This property is used to configure the following features:
The common name of the LDAP data source
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
10 |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
Yes |
This property specifies the initial number of connections that should be made to an LDAP data source to perform write operations.
This property takes an integer.
The value of this property must be at least 0.
This property is used to configure the following features:
The common name of the LDAP data source
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
1024 |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the maximum number of connections that can be made to an LDAP data source to perform write operations.
This property takes an integer.
The value of this property must be at least 1.
This property can also take the following values:
This value means no limit is set for this property.
This property is used to configure the following features:
The common name of the LDAP data source
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dn |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property specifies the list of one-level search bases to which the search-size-limit property applies. Custom search limits are defined for a specific resource limits policy.
This property takes a Distinguished Name (DN) value.
The default behavior for this property is as follows: The search-size-limit property does not apply to any one-level search.
This property is used to configure the following features:
Custom search limits are used to restrict the maximum size of a search result. Custom search limits are defined for a specific resource limits policy.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
all |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies a pattern for a search filter. The filter of a base-level search request must match the specified pattern for the request to be handled by the data view.
The default behavior for this property is as follows: Match all base-object search filters
This property is used to configure the following features:
A JDBC data view enables you to make a relational database accessible to LDAP client applications.
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
An LDAP data view exposes data in an LDAP server to a client request and specifies the data source pool that responds to the request.
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
all |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies a pattern for a regular expression. The target DN of a request must match this pattern in order for the data view to handle the request. The pattern is relative to the base DN of the data view.
The default behavior for this property is as follows: Match all operation target DNs
This property is used to configure the following features:
A JDBC data view enables you to make a relational database accessible to LDAP client applications.
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
An LDAP data view exposes data in an LDAP server to a client request and specifies the data source pool that responds to the request.
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
all |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies a pattern for a search filter. The filter of a one-level search request must match the specified pattern for the request to be handled by the data view.
The default behavior for this property is as follows: Match all one-level search filters
This property is used to configure the following features:
A JDBC data view enables you to make a relational database accessible to LDAP client applications.
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
An LDAP data view exposes data in an LDAP server to a client request and specifies the data source pool that responds to the request.
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
all |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies a pattern for a search filter. The filter of a subtree-level search request must match the specified pattern for the request to be handled by the data view.
The default behavior for this property is as follows: Match all subtree search filters
This property is used to configure the following features:
A JDBC data view enables you to make a relational database accessible to LDAP client applications.
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
An LDAP data view exposes data in an LDAP server to a client request and specifies the data source pool that responds to the request.
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
Default behavior is not defined. |
Must be set |
Yes |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the primary JDBC table from which the object class obtains its list of entries.
This property is used to configure the following features:
A JDBC object class maps an LDAP object class to one or more relational database tables. A JDBC object class can obtain its information from more than one table. However, one table must be defined as the primary table, and additional tables are defined as secondary tables.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dnReference |
Default value |
Default behavior is not defined. |
Must be set |
Yes |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property defines the primary data view that forms the source of a join data view.
The value of this property is the name of one of the following configuration entities: jdbc-data-view, join-data-view, ldap-data-view, ldif-data-view.
This property is used to configure the following features:
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
99 |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the priority of the connection handler. A connection is evaluated against connection handlers in order of the priority of the connection handler, as follows:
Priority 1 is the highest priority connection handler.
Priority 100 is the lowest priority connection handler. Priority 100 is reserved for the default connection handler.
This property takes an integer.
The value of this property must be at least 1.
The value of this property must be no greater than 99.
This property is used to configure the following features:
Connection handlers define the resource limits and filters that apply to a connection, and the data views that are exposed to the connection.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
No default is defined. |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies whether binds are permitted on a data view.
This property is true or false.
This property is used to configure the following features:
A JDBC data view enables you to make a relational database accessible to LDAP client applications.
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
An LDAP data view exposes data in an LDAP server to a client request and specifies the data source pool that responds to the request.
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property specifies a set of LDAP attribute types that cannot be compared in an LDAP search filter or compare operation.
The default behavior for this property is as follows: None - all attribute types can be compared
This property is used to configure the following features:
Request filtering policies control what data can be accessed by clients.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dn |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property specifies a set of subtrees that cannot be accessed by clients.
This property takes a Distinguished Name (DN) value.
The default behavior for this property is as follows: No subtrees are prohibited
This property is used to configure the following features:
Request filtering policies control what data can be accessed by clients.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
duration |
Default value |
1800000 |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies a timeout used during proxy authorization.
When a client operation contains a proxy authorization control, Directory Proxy Server checks that the clientDN has the right to impersonate the clientPauthDN.
If client-cred-mode(5dpconf) is set to use-proxy-auth, Directory Proxy Server checks that the clientDN has the relevant ACIs in the LDAP server by using the getEffectiveRights command.
The result is cached in the Directory Proxy Server and renewed when proxied-auth-check-timeout expires.
The duration is expressed in milliseconds.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
false |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether Directory Proxy Server will use proxy authorization control version 1 or version 2, as follows:
If the flag is true, Directory Proxy Server uses proxy authorization control v1.
If the flag is false, Directory Proxy Server uses proxy authorization control v2.
This property is true or false.
This property is used to configure the following features:
The common name of the LDAP data source
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
enumeration |
Default value |
default |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the bind policy that is applied when following referrals.
This property can take the following values in addition to the default.
Use credentials if available
Always anonymous
The default behavior for this property is as follows: Use the settings specified in the default connection handler.
This property is used to configure the following features:
Resource limit policies define the maximum resources that Directory Proxy Server can process for a given connection handler.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
default |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the maximum number of hops that are allowed when following referrals.
This property takes an integer.
The value of this property must be at least 1.
This property can also take the following values:
No limit
The default behavior for this property is as follows: Use the settings specified in the default connection handler.
This property is used to configure the following features:
Resource limit policies define the maximum resources that Directory Proxy Server can process for a given connection handler.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
enumeration |
Default value |
default |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the policy that is applied when a referral is returned by an LDAP server.
This property can take the following values in addition to the default.
Follow referrals
Forward referrals to client
Discard referrals
The default behavior for this property is as follows: Use the settings specified in the default connection handler
This property is used to configure the following features:
Resource limit policies define the maximum resources that Directory Proxy Server can process for a given connection handler.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the name of the attribute that contains an alternate bind DN. The attribute is contained in a user entry on a remote LDAP server. The attribute is used to perform remote user mapping when enable-remote-user-mapping(5dpconf) is true.
The default behavior for this property is as follows: This property is required when proxy performs remote user mapping.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
enumeration |
Default value |
master |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the role that the data view plays in replication distribution.
This property can take the following values in addition to the default.
The data view simulates a replication consumer and handles read operations only.
The data view simulates a replication master and handles read and write operations.
This property is used to configure the following features:
A JDBC data view enables you to make a relational database accessible to LDAP client applications.
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
An LDAP data view exposes data in an LDAP server to a client request and specifies the data source pool that responds to the request.
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dnReference |
Default value |
no-filtering |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the name of a request filtering policy which is to be used by the connection handler.
This property has as its value the name of a request-filtering-policy configuration entity.
The default behavior for this property is as follows: No request filtering policy - all requests are permitted.
This property is used to configure the following features:
Connection handlers define the resource limits and filters that apply to a connection, and the data views that are exposed to the connection.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dnReference |
Default value |
no-limits |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the name of a resource limits policy which is to be used by the connection handler.
This property has as its value the name of a resource-limits-policy configuration entity.
The default behavior for this property is as follows: No resource limits policy - no resource limits apply.
This property is used to configure the following features:
Connection handlers define the resource limits and filters that apply to a connection, and the data views that are exposed to the connection.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
enumeration |
Default value |
hide-entry |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies how the result of a search operation should be returned.
This property can take the following values in addition to the default.
Do not return target entries
Return target entries, filtering out the attributes specified by the attrs property
Return target entries, filtering out the attributes not specified by the attrs property
This property is used to configure the following features:
Search data hiding rules determine what parts of the result of a search operation are returned to a client. Search data hiding rules are defined for a given request filtering policy.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
false |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether or not the connection handler should perform a schema check.
This property is true or false.
This property is used to configure the following features:
Connection handlers define the resource limits and filters that apply to a connection, and the data views that are exposed to the connection.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
No default is defined. |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the command to use for handling alert messages.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
false |
Must be set |
Yes |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether or not Directory Proxy Server should use a customizable script for alert notification.
This property is true or false.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
enumeration |
Default value |
parallel |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies how searches that span multiple data sources are performed.
This property can take the following values in addition to the default.
Perform searches in parallel
Perform searches sequentially
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
unlimited |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the maximum number of entries that can be returned by a search operation.
This property takes an integer.
The value of this property must be at least 1.
This property can also take the following values:
This value means no limit is set for this property.
This property is used to configure the following features:
Custom search limits are used to restrict the maximum size of a search result. Custom search limits are defined for a specific resource limits policy.
Resource limit policies define the maximum resources that Directory Proxy Server can process for a given connection handler.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
duration |
Default value |
unlimited |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the maximum duration of a search operation.
The duration is expressed in milliseconds.
The value of this property cannot be unlimited.
The default behavior for this property is as follows: No limit
This property is used to configure the following features:
Resource limit policies define the maximum resources that Directory Proxy Server can process for a given connection handler.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
duration |
Default value |
10000 |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the maximum length of time that Directory Proxy Server waits for a search thread to become available.
The duration is expressed in milliseconds.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
integer |
Default value |
disabled |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the proportion of search requests that are sent to the attached data source.
This property takes an integer.
The value of this property must be at least 1.
This property can also take the following values:
Do not forward any search requests to the data source
This property is used to configure the following features:
A data source can be attached to one or more data source pools for load balancing and failover. When attached to a data source pool, a data source is called an attached data source.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property specifies an optional additional JDBC table from which the object class obtains additional information about its entries.
The default behavior for this property is as follows: No additional JDBC table is considered.
This property is used to configure the following features:
A JDBC object class maps an LDAP object class to one or more relational database tables. A JDBC object class can obtain its information from more than one table. However, one table must be defined as the primary table, and additional tables are defined as secondary tables.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dnReference |
Default value |
Default behavior is not defined. |
Must be set |
Yes |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property defines the secondary data view that forms the source of a join data view.
The value of this property is the name of one of the following configuration entities: jdbc-data-view, join-data-view, ldap-data-view, ldif-data-view.
This property is used to configure the following features:
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
Default behavior is not defined. |
Must be set |
Yes |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property provides the column in the relational database table from which the LDAP attribute is obtained.
This property is used to configure the following features:
JDBC attributes map LDAP attributes to entries in relational database tables. The definition of a JDBC attribute includes the name of the LDAP attribute, and the relational database table and column in which the corresponding information is located.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
VARCHAR |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property defines the syntax used to construct an entry in the relational database table from an LDAP entry.
This property is used to configure the following features:
JDBC attributes map LDAP attributes to entries in relational database tables. The definition of a JDBC attribute includes the name of the LDAP attribute, and the relational database table and column in which the corresponding information is located.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
Default behavior is not defined. |
Must be set |
Yes |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the name of the relational database table.
This property is used to configure the following features:
A JDBC table is created for each relational database table that will be used in the JDBC data view. When you create a JDBC table you specify the name of the table in the relational database, and the name you want to assign to this table in the JDBC data view.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the alias of the certificate used to negotiate SSL connections with data sources.
The default behavior for this property is as follows: Proxy applies chooses an alias based on the public key type and the list of certificate issuer authorities recognized by the peer (if any).
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
enumeration |
Default value |
never |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
Yes |
This property specifies whether SSL should be used for connections between Directory Proxy Server and a data source.
This property can take the following values in addition to the default.
Always use SSL
Use SSL if the client is using SSL
Never use SSL
This property is used to configure the following features:
The common name of the LDAP data source
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the alias of the certificate used to negotiate SSL connections with clients.
The default behavior for this property is as follows: Proxy applies chooses an alias based on the public key type and the list of certificate issuer authorities recognized by the peer (if any). After instance creation, the value of this property is defaultServerCert.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dn |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property specifies the list of subtree search bases to which the search-size-limit property applies. Custom search limits are defined for a specific resource limits policy.
This property takes a Distinguished Name (DN) value.
The default behavior for this property is as follows: The search-size-limit property does not apply to any subtree search.
This property is used to configure the following features:
Custom search limits are used to restrict the maximum size of a search result. Custom search limits are defined for a specific resource limits policy.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies a list of additional object classes to be returned as part of the objectclass attribute.
The default behavior for this property is as follows: No additional object class is returned.
This property is used to configure the following features:
A JDBC object class maps an LDAP object class to one or more relational database tables. A JDBC object class can obtain its information from more than one table. However, one table must be defined as the primary table, and additional tables are defined as secondary tables.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
JRE |
Must be set |
No |
Is modifiable |
No |
Is multivalued |
Yes |
Requires restart |
No |
This property specifies the list of SSL cipher suites that are supported by Directory Proxy Server.
The default behavior for this property is as follows: All SSL cipher suites supported by the Java Run Time running the proxy.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
JRE |
Must be set |
No |
Is modifiable |
No |
Is multivalued |
Yes |
Requires restart |
No |
This property specifies the list of SSL protocols that are supported by Directory Proxy Server.
The default behavior for this property is as follows: All SSL protocols supported by the Java Run Time running the proxy.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
false |
Must be set |
Yes |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether or not Directory Proxy Server should use the system log for alert notification.
This property is true or false.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
USER |
Must be set |
No |
Is modifiable |
No |
Is multivalued |
No |
Requires restart |
No |
This property specifies the syslog message category that alert messages should use.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
ipAddress |
Default value |
localhost |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the host name of the syslogd daemon that alert messages should be sent to.
This property takes an IP address or host name.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property specifies a list of attribute:value assertions in the form attrName:attrValue. The search data hiding rule applies to entries that match one or more of the specified assertions.
The syntax of this string is <attr>#<value>.
An attribute value assertion of the form <attribute>#<value>
The value of this property must match the pattern ^[a-zA-Z][-a-zA-Z0-9]+#.+$.
The default behavior for this property is as follows: No assertion is defined.
This property is used to configure the following features:
Search data hiding rules determine what parts of the result of a search operation are returned to a client. Search data hiding rules are defined for a given request filtering policy.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property specifies a list of name patterns. The search data hiding rule applies to entries whose name matches one or more of the specified patterns.
The default behavior for this property is as follows: No pattern is defined.
This property is used to configure the following features:
Search data hiding rules determine what parts of the result of a search operation are returned to a client. Search data hiding rules are defined for a given request filtering policy.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dn |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property specifies a list of entry names. The search data hiding rule applies to all the listed entries.
This property takes a Distinguished Name (DN) value.
The default behavior for this property is as follows: No DN is defined.
This property is used to configure the following features:
Search data hiding rules determine what parts of the result of a search operation are returned to a client. Search data hiding rules are defined for a given request filtering policy.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
duration |
Default value |
500 |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the time interval between consecutive system calls that retrieve time from the OS. For details about operations that take less than 500 milliseconds, reduce the time-resolution period. If set to 0 milliseconds, the proxy systematically performs a system call to retrieve the current time, else the time is cached and retrieved only every time-resolution period. This time is displayed in the logs.
The duration is expressed in milliseconds.
The value of this property cannot be unlimited.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
true |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether or not Directory Proxy Server should use a user certificate subject as the user DN.
This property is true or false.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
false |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
Yes |
This property is a flag indicating whether or not Directory Proxy Server should use an external LDAP schema.
This property is true or false.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dn |
Default value |
none |
Must be set |
Yes |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the distinguished name of the client that is mapped if enable-user-mapping(5dpconf) is true.
The distinguished name of the user that the client is mapped to is specified by mapped-bind-dn(5dpconf).
This property takes a Distinguished Name (DN) value.
The default behavior for this property is as follows: Proxy does no apply user mapping.
This property is used to configure the following features:
In user mapping, a client identity is mapped to the identity of an alternate user. After a BIND operation, the Directory Proxy Server submits subsequent operations as the alternate user.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
No |
Is modifiable |
No |
Is multivalued |
No |
Requires restart |
No |
This property specifies the password of the client that is mapped if enable-user-mapping(5dpconf) is true.
The password of the user to which the client is mapped is specified by mapped-bind-pwd(5dpconf).
This property is read-only. To change the password, use the user-bind-pwd-file property.
The default behavior for this property is as follows: The proxy will not associate any password to the mapped identity.
This property is used to configure the following features:
In user mapping, a client identity is mapped to the identity of an alternate user. After a BIND operation, the Directory Proxy Server submits subsequent operations as the alternate user.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
password |
Default value |
No default is defined. |
Must be set |
Yes |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the file from which to read the password of the client that is mapped if enable-user-mapping(5dpconf) is true.
The password of the user that the client is mapped to is specified by mapped-bind-pwd(5dpconf). The temporary file is read once, and the password stored for future use.
This property takes a path to a file that contains the password value.
This property is used to configure the following features:
In user mapping, a client identity is mapped to the identity of an alternate user. After a BIND operation, the Directory Proxy Server submits subsequent operations as the alternate user.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
any |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies an LDAP search filter. The entry of the bound client must match the LDAP search filter in order for the connection to be accepted by the connection handler.
For example, the following filter could be used as a criteria for a connection handler: "uid>=1000".
Bound clients with a uid that matches the filter can be allocated to the connection handler.
The default behavior for this property is as follows: All users are accepted
This property is used to configure the following features:
Connection handlers define the resource limits and filters that apply to a connection, and the data views that are exposed to the connection.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dn |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the bind DN to which anonymous users are mapped if enable-user-mapping(5dpconf) is true.
This property takes a Distinguished Name (DN) value.
The default behavior for this property is as follows: No mapping is applied to anonymous users.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
No |
Is modifiable |
No |
Is multivalued |
No |
Requires restart |
No |
This property specifies the authentication password for anonymous user mapping if enable-user-mapping(5dpconf) is true.
This property is read-only. To change the password, use the user-mapping-anonymous-bind-pwd-file property.
The default behavior for this property is as follows: No mapping is applied to anonymous users.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
password |
Default value |
No default is defined. |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the file from which to read the authentication password for anonymous user mapping if enable-user-mapping(5dpconf) is true. The temporary file is read once, and the password is stored for future use.
This property takes a path to a file that contains the password value.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
dn |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies a default bind DN to which a user identity is mapped if enable-user-mapping(5dpconf) is true but the mapping fails.
User mapping can fail when a client identity is mapped to a non-existent alternative identity or when there has been a configuration error.
This property takes a Distinguished Name (DN) value.
The default behavior for this property is as follows: No mapping is applied.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
No |
Is modifiable |
No |
Is multivalued |
No |
Requires restart |
No |
This property specifies the default bind password to use if enable-user-mapping(5dpconf) is true but the mapping fails.
User mapping can fail when a client identity is mapped to a non-existent alternative identity or when there has been a configuration error.
This property is read-only. To change the password, use the user-mapping-default-bind-pwd-file property.
The default behavior for this property is as follows: No mapping is applied to anonymous users.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
password |
Default value |
No default is defined. |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property specifies the file from which to read the default bind password if enable-user-mapping(5dpconf) is true but the mapping fails. The temporary file is read once, and the password is stored for future use.
This property takes a path to a file that contains the password value.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
true |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether or not TCP_NODELAY should be enabled for connections between clients and a listener.
This property is true or false.
This property is used to configure the following features:
The common name of the LDAP data source
The LDAP listener represents the network interface of Directory Proxy Server.
The LDAP listener represents the network interface of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
boolean |
Default value |
false |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
No |
Requires restart |
No |
This property is a flag indicating whether or not Directory Proxy Server should verify that the client entry contains the SSL client certificate.
This property is true or false.
This property is used to configure the following features:
The global configuration of Directory Proxy Server contains properties that affect the overall operation of Directory Proxy Server.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
all except non-viewable-attr |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property provides a list of attributes that are exposed by the data view.
The default behavior for this property is as follows: All attributes are viewable
This property is used to configure the following features:
A JDBC data view enables you to make a relational database accessible to LDAP client applications.
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
An LDAP data view exposes data in an LDAP server to a client request and specifies the data source pool that responds to the request.
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
none |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property defines the virtual value of the attribute.
The default behavior for this property is as follows: For some transformations, this property is required for the proxy to apply the transformation.
This property is used to configure the following features:
Virtual data transformations create a virtual data view from a physical data view. Practically, you never define a virtual data view. Instead, you specify the transformations that you require and define these on an existing physical data view. A transformation performs a specific action in a certain direction. The direction of a transformation determines the transformation model. When you define a virtual data transformation, you create a virtual attribute that exists only in the context of the virtual data view.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also
NAME | Description | Attributes | See Also
Syntax |
string |
Default value |
all except non-writable-attr |
Must be set |
No |
Is modifiable |
Yes |
Is multivalued |
Yes |
Requires restart |
No |
This property provides a list of attributes that can be written through the data view.
The default behavior for this property is as follows: All attributes are writable
This property is used to configure the following features:
A JDBC data view enables you to make a relational database accessible to LDAP client applications.
A join data view is an aggregation of multiple data views. The current release of Directory Proxy Server supports the aggregation of two data views into one join data view.
An LDAP data view exposes data in an LDAP server to a client request and specifies the data source pool that responds to the request.
An LDIF data view allows data in an LDIF file to be present to LDAP applications as if it were LDAP data.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE |
ATTRIBUTE VALUE |
---|---|
Availability |
SUNWldap-proxy |
Stability Level |
Evolving |
dpconf(1M)
NAME | Description | Attributes | See Also