The dir.ini
file contains properties that are used to configure the directory services options described below.
The dir.ini
file is the main configuration file for the WebCenter Sites Directory Services API. WebCenter Sites uses this API to connect to directory servers for authentication/authorization services and to provide the following options for managing user information (one of the options is configured for your WebCenter Sites system):
The WebCenter Sites directory services plug-in, which uses the native WebCenter Sites user management tables (SystemUsers
and SystemUserAttrs
).
LDAP plug-ins, which uses the directory server rather than the WebCenter Sites database to store user names and attributes.
Properties in dir.ini
are organized by function on the following tabs in the Property Editor:
Note:
Although the dir.ini
file is the main configuration file for the directory services API, there are additional user manager/directory services properties in another property file, futuretense.ini
. See Section 9.2, "Authentication Tab."
The Attribute Names tab holds attribute-mapping properties. You use these properties to specify how a user attribute used by WebCenter Sites is identified in the directory server.
Table 7-1 Properties in dir.ini
: Attribute Names Tab
Property | Description |
---|---|
Specifies the name of the attribute in the directory server that serves as the group name attribute. Possible values:
|
|
Specifies the name of the attribute in the directory server that serves as the user login attribute. Default value: |
|
Specifies the name of the attribute in the directory server that serves as the password attribute. Possible values:
|
|
Specifies the name of the attribute in the directory server that serves as the group assignment attribute. Possible values:
|
|
Specifies the name of the attribute in the directory server that serves as the user name attribute. Possible values:
|
|
Specifies the name of the user attribute that contains information about the user's groups. If a user's membership in a group is specified by the If the group membership of a user is specified by an attribute of the user, specify the name of that attribute here. Possible values:
|
The Compatibility tab holds properties that determine how any strings that are extracted from the directory server and stored in the WebCenter Sites database are treated.
Table 7-2 Properties in dir.ini
: Compatibility Tab
Property | Description |
---|---|
Specifies how the strings for distinguished names are stored in the WebCenter Sites database. If set to true, the Directory Services API extracts distinguished names from the directory server, and then removes extra spaces from them and then changes all the upper-case letters to lower-case letters before storing the strings in the WebCenter Sites database. Possible values: Default value: Note: Do not set this value to |
The Global Data tab holds properties that determine global values for all users.
Table 7-3 Properties in dir.ini
: Global Data Tab
Property | Description |
---|---|
Specifies the distinguished name for the root to use by default for searches and for prepending to the names for attribute values that require a DN type. Default value: blank Do not change the value of this property. Because the authentication module sets the |
|
Specifies the entry to use as the parent of all WebCenter Sites entries of type Possible values:
|
|
Specifies the entry to use as the parent of all WebCenter Sites entries of type Possible values:
|
The Interface Implementations tab holds two properties that determine which user manager module your WebCenter Sites system is using. The properties are className.IDir
and className.IName
. The values of the properties on the Interface Implementations tab should not be modified unless you are integrating with LDAP.
Table 7-4 Properties in dir.ini
: Interface Implementations Tab
Property | Description |
---|---|
Specifies the name of the concrete class to implement the interface Attribute. Do not change the value of this property unless you are integrating with LDAP. |
|
Specifies the name of the concrete class to implement the interface Attributes. Do not change the value of this property unless you integrate with LDAP. |
|
With the Possible values:
Do not change the value of this property unless you are integrating with LDAP. |
|
Specifies the name of the concrete class to implement the interface Do not change the value of this property unless you are integrating with LDAP. |
|
With the Possible values:
Do not change the value of this property unless you are integrating with LDAP. |
|
Specifies the name of the concrete class to implement interface Possible values:
Do not change the value of this property unless you are integrating with LDAP. |
|
Specifies the name of the concrete class to implement the interface JNDIName. Do not change the value of this property unless you are integrating with LDAP. |
The properties on the JNDI SPI Env tab are used only if your WebCenter Sites system is configured to use the LDAP user manager module.
Table 7-5 Properties in dir.ini
: JNDI SPI Env Tab
Property | Description |
---|---|
Specifies the initial factory class to use. The value of this property should be the fully qualified class name of the factory class that will create an initial context. Do not change the value of this property. |
|
Specifies the security level to use. Its value is one of the following strings: If this property is unspecified, the security level is determined by the service provider. Default value: |
|
Specifies the server name and port number of the directory server. The value uses the following format: ldap://<hostname>:<port> |
|
Specifies whether WebCenter Sites needs a designated user account to query the directory server for user attribute information. If set to If set to |
|
System property. Do not enter a value for this property. Specifies other spi-specific variables to pass into the |
|
Applies only when Specifies the fully qualified, fully distinguished name of the user account that WebCenter Sites uses to query the directory server. |
|
Applies only when Specifies the password of the user account that WebCenter Sites uses to query the directory server. This value is encrypted. |
|
Applies only when If this property is set to If set to |
|
Indicates the size of the pool. Default value: This property is ignored if |
|
Specifies classJNDIName-specific variables to pass into the classIName constructor. Syntax follows x-www-form-urlencoded format. |
The Naming Syntax tab holds properties that determine how strings for user attributes and their values are interpreted.
Table 7-6 Properties in dir.ini
: Naming Syntax Tab
Property | Description |
---|---|
Specifies the string that delimits the beginning of a quoted string. Default value: |
|
Specifies an alternative to the value specified for the |
|
Specifies the direction in which the components in a designated name are read. Possible values: left_to_right right_to_left flat Default value: |
|
Specifies the string that delimits the end of a quoted string. Default value: |
|
Specifies an alternative to the value specified for |
|
Specifies the escape string for overriding separators, escapes, and quotes. If you are using special characters, such as Default value: |
|
Specifies whether strings are case-sensitive or not. Set to Set to Default value: Note: If you need to set the |
|
Specifies the separator character used between atomic name components. This property is required unless Default value: |
|
Specifies the separator character used to separate multiple attribute/value pairs. Typically the comma character (,) is used. Default value: |
|
Specifies the separator character used to separate an attribute from its value. For example, the equals symbol ( Default value: |
|
Specifies whether spaces and whitespace characters are significant or should be ignored (trimmed) when evaluating a string. Set to Set to Default value: |
The Schema Defaults tab holds properties that identify the following entities to WebCenter Sites:
The directory server attributes for which users must have values in order to be valid users
Attribute values that are assigned to users by default (if any).
Table 7-7 Properties in dir.ini
: Schema Defaults Tab
Property | Description |
---|---|
Specifies the attribute name/value pairs that are set for every descendent of the entry specified by the WebCenter Sites uses this information to create the default groups that it needs during the installation, which means that this property must be set before you install WebCenter Sites. Values must be entered in the x-www-form-urlencoded format. |
|
Specifies the attribute name/value pairs that are set for every descendent of the entry specified by the WebCenter Sites uses this information to create the default users that it needs during the installation, which means that this property must be set before you install WebCenter Sites. Values must be entered in the x-www-form-urlencoded format. |
|
The ACL list to be assigned to DefaultReader by Login Module. Default value: |
|
Specifies the name of the base object that signifies a WebCenter Sites group. The Possible values:
|
|
Specifies the name of the base object that signifies a WebCenter Sites user (person). The Value for WebCenter Sites or LDAP: |
|
Specifies the attributes that every descendent of the entry specified by the Values must be entered in the x-www-form-urlencoded format. |
|
Specifies the attributes that every descendent of the entry specified by the Values must be entered in the x-www-form-urlencoded format. |
The Search Controls tab holds properties that constrain the queries that the user manager plug-in makes to the directory server.
Table 7-8 Properties in dir.ini
: Search Controls Tab
Property | Description |
---|---|
Specifies the maximum number of entries to return. To obtain all the entries that satisfy the search criteria, set the value to |
|
Specifies to what depth in the hierarchy a search reaches: search just the specified or current node, or search the nodes under that node. Default value: |
|
Specifies the number of seconds to wait for results before returning an error. A value of |