The Pass Through Authentication Workflow Element provides pass-through authentication to an authentication service such as Kerberos Distribution Server (KDC), SMTP server or external LDAP Servers such as Active Directory etc.
The Pass Through Authentication Workflow Element uses a combination of workflow elements to perform lookup and authentication of the authenticating user.
The Pass Through Authentication Workflow Element component inherits from the Workflow Element
The following components have a direct AGGREGATION relation FROM Pass Through Authentication Workflow Elements :
A description of each property follows.
| Basic Properties: | Advanced Properties: |
|---|---|
| ↓ auth-provider-workflow-element | ↓ java-class |
| ↓ enabled | ↓ password-attribute |
| ↓ user-provider-workflow-element | ↓ save-password-on-successful-bind |
auth-provider-workflow-element
| Description | Identifies the workflow element that provides the authentication service for the user entry retreived by this Pass Through Authentication Workflow Element. Examples of auth provider are Kerberos or Local backend. During a bind, the Pass Through Authentication Workflow Element delegates the authentication part to an auth provider workflow element. |
|---|---|
| Default Value | None |
| Allowed Values | The DN of any Workflow Element. |
| Multi-valued | No |
| Required | Yes |
| Admin Action Required | None |
| Advanced Property | No |
| Read-only | No |
| Description | Indicates whether the Workflow Element is enabled for use in the server. If a Workflow Element is not enabled, then its contents are not accessible when processing operations. |
|---|---|
| Default Value | None |
| Allowed Values | true false |
| Multi-valued | No |
| Required | Yes |
| Admin Action Required | None |
| Advanced Property | No |
| Read-only | No |
user-provider-workflow-element
| Description | Identifies the workflow element that is responsible for providing the requested user entry. An example of user entry provider is local backend. The Pass Through Authentication Workflow Element delegates all but bind operation to a user provider workflow element. |
|---|---|
| Default Value | None |
| Allowed Values | The DN of any Workflow Element. |
| Multi-valued | No |
| Required | Yes |
| Admin Action Required | None |
| Advanced Property | No |
| Read-only | No |
| Description | Specifies the fully-qualified name of the Java class that provides the Pass Through Authentication Workflow Element implementation. |
|---|---|
| Default Value | org.opends.server.workflowelement.pta.PassThroughAuthenticationWorkflowElement |
| Allowed Values | A java class that implements or extends the class(es) : org.opends.server.workflowelement.WorkflowElement |
| Multi-valued | No |
| Required | Yes |
| Admin Action Required | None |
| Advanced Property | Yes |
| Read-only | No |
| Description | Specifies the names of the attribute that contains the password locally. When saving the password locally, that parameter contains the name of the attribute used to store the password in the local entry. |
|---|---|
| Default Value | userPassword |
| Allowed Values | A String |
| Multi-valued | No |
| Required | No |
| Admin Action Required | None |
| Advanced Property | Yes |
| Read-only | No |
save-password-on-successful-bind
| Description | Indicates whether the password should be saved in the user entry when authentication succeeds. When executing remote authentication, it is sometimes usefull to be able to save the password locally. It is useful during a migration when passwords where not exported, or in cases where passwords needs to be stored locally (i.e EUS). |
|---|---|
| Default Value | false |
| Allowed Values | true false |
| Multi-valued | No |
| Required | No |
| Admin Action Required | None |
| Advanced Property | Yes |
| Read-only | No |