| 
 | Oracle Fusion Middleware Java API Reference for Oracle WebLogic Server 12c (12.1.2) Part Number E27170-01 | ||||||||||
| PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||||
| SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD | ||||||||||
public interface ActiveDirectoryAuthenticatorMBean
The MBean that represents LDAP schema definitions for the Active Directory LDAP Authentication provider.
This is a type-safe interface for a       WebLogic Server MBean, which you can import into your client classes and       access through weblogic.management.MBeanHome. As of 9.0,       the MBeanHome interface and all type-safe interfaces for       WebLogic Server MBeans are deprecated. Instead, client classes that       interact with WebLogic Server MBeans should use standard JMX design       patterns in which clients use the       javax.management.MBeanServerConnection interface to       discover MBeans, attributes, and attribute types at runtime.
| Method Summary | |
|---|---|
|  Boolean | getEnableSIDtoGroupLookupCaching()Boolean value that indicates whether SID to group name lookup results are cached or not. | 
|  String | getGroupBaseDN()The attribute of an LDAP user object that specifies the Distinguished Names (DNs) of dynamic groups to which the user belongs. | 
|  String | getGroupFromNameFilter()LDAP search filter for finding a group given the name of the group. | 
|  String | getGuidAttribute()Specifies the name of the GUID attribute defined in the Active Directory LDAP server. | 
|  Integer | getMaxSIDToGroupLookupsInCache()The maximum size of the LRU cache for holding SID to group lookups if caching of SID to group name mappings is enabled and if the tokenGroups group membership lookup is enabled. | 
|  String | getName()The name of this configuration. | 
|  String | getStaticGroupDNsfromMemberDNFilter()An LDAP search filter that, given the distinguished name (DN) of a member of a group, returns the DNs of the static LDAP groups that contain that member. | 
|  String | getStaticGroupObjectClass()The name of the LDAP object class that stores static groups. | 
|  String | getStaticMemberDNAttribute()The attribute of the LDAP static group object that specifies the distinguished names (DNs) of the members of the group. | 
|  String | getUserBaseDN()The base Distinguished Name (DN) of the tree in the LDAP directory that contains users. | 
|  String | getUserFromNameFilter()LDAP search filter for finding a user given the name of the user. | 
|  String | getUserNameAttribute()The attribute of the LDAP User object that specifies the name of the user. | 
|  String | getUserObjectClass()The name of the LDAP object class that stores users. | 
|  Boolean | getUseTokenGroupsForGroupMembershipLookup()Boolean value that indicates whether to use TokenGroups attribute lookup algorithm instead of the standard recursive group membership lookup algorithm. | 
|  void | setEnableSIDtoGroupLookupCaching(Boolean newValue)Boolean value that indicates whether SID to group name lookup results are cached or not. | 
|  void | setGroupBaseDN(String newValue)The attribute of an LDAP user object that specifies the Distinguished Names (DNs) of dynamic groups to which the user belongs. | 
|  void | setGroupFromNameFilter(String newValue)LDAP search filter for finding a group given the name of the group. | 
|  void | setGuidAttribute(String newValue)Specifies the name of the GUID attribute defined in the Active Directory LDAP server. | 
|  void | setMaxSIDToGroupLookupsInCache(Integer newValue)The maximum size of the LRU cache for holding SID to group lookups if caching of SID to group name mappings is enabled and if the tokenGroups group membership lookup is enabled. | 
|  void | setStaticGroupDNsfromMemberDNFilter(String newValue)An LDAP search filter that, given the distinguished name (DN) of a member of a group, returns the DNs of the static LDAP groups that contain that member. | 
|  void | setStaticGroupObjectClass(String newValue)The name of the LDAP object class that stores static groups. | 
|  void | setStaticMemberDNAttribute(String newValue)The attribute of the LDAP static group object that specifies the distinguished names (DNs) of the members of the group. | 
|  void | setUserBaseDN(String newValue)The base Distinguished Name (DN) of the tree in the LDAP directory that contains users. | 
|  void | setUserFromNameFilter(String newValue)LDAP search filter for finding a user given the name of the user. | 
|  void | setUserNameAttribute(String newValue)The attribute of the LDAP User object that specifies the name of the user. | 
|  void | setUserObjectClass(String newValue)The name of the LDAP object class that stores users. | 
|  void | setUseTokenGroupsForGroupMembershipLookup(Boolean newValue)Boolean value that indicates whether to use TokenGroups attribute lookup algorithm instead of the standard recursive group membership lookup algorithm. | 
| Methods inherited from interface weblogic.descriptor.DescriptorBean | 
|---|
| addPropertyChangeListener, createChildCopyIncludingObsolete, getParentBean, isEditable, removePropertyChangeListener | 
| Methods inherited from interface weblogic.descriptor.SettableBean | 
|---|
| isSet, unSet | 
| Methods inherited from interface weblogic.descriptor.DescriptorBean | 
|---|
| addPropertyChangeListener, createChildCopyIncludingObsolete, getParentBean, isEditable, removePropertyChangeListener | 
| Methods inherited from interface weblogic.descriptor.SettableBean | 
|---|
| isSet, unSet | 
| Methods inherited from interface weblogic.security.providers.authentication.LoginExceptionPropagatorMBean | 
|---|
| getPropagateCauseForLoginException, setPropagateCauseForLoginException | 
| Methods inherited from interface weblogic.descriptor.DescriptorBean | 
|---|
| addPropertyChangeListener, createChildCopyIncludingObsolete, getParentBean, isEditable, removePropertyChangeListener | 
| Methods inherited from interface weblogic.descriptor.SettableBean | 
|---|
| isSet, unSet | 
| Methods inherited from interface weblogic.management.security.authentication.AuthenticatorMBean | 
|---|
| getControlFlag, setControlFlag | 
| Methods inherited from interface weblogic.management.security.ProviderMBean | 
|---|
| getRealm | 
| Methods inherited from interface weblogic.descriptor.DescriptorBean | 
|---|
| addPropertyChangeListener, createChildCopyIncludingObsolete, getParentBean, isEditable, removePropertyChangeListener | 
| Methods inherited from interface weblogic.descriptor.SettableBean | 
|---|
| isSet, unSet | 
| Methods inherited from interface weblogic.management.security.authentication.UserReaderMBean | 
|---|
| getUserDescription, listUsers, userExists | 
| Methods inherited from interface weblogic.management.utils.NameListerMBean | 
|---|
| getCurrentName | 
| Methods inherited from interface weblogic.management.utils.ListerMBean | 
|---|
| advance, close, haveCurrent | 
| Methods inherited from interface weblogic.management.security.authentication.GroupReaderMBean | 
|---|
| getGroupDescription, groupExists, isMember, listGroups | 
| Methods inherited from interface weblogic.management.utils.NameListerMBean | 
|---|
| getCurrentName | 
| Methods inherited from interface weblogic.management.utils.ListerMBean | 
|---|
| advance, close, haveCurrent | 
| Methods inherited from interface weblogic.management.security.authentication.GroupMemberListerMBean | 
|---|
| listGroupMembers | 
| Methods inherited from interface weblogic.management.security.authentication.GroupReaderMBean | 
|---|
| getGroupDescription, groupExists, isMember, listGroups | 
| Methods inherited from interface weblogic.management.utils.NameListerMBean | 
|---|
| getCurrentName | 
| Methods inherited from interface weblogic.management.utils.ListerMBean | 
|---|
| advance, close, haveCurrent | 
| Methods inherited from interface weblogic.descriptor.DescriptorBean | 
|---|
| addPropertyChangeListener, createChildCopyIncludingObsolete, getParentBean, isEditable, removePropertyChangeListener | 
| Methods inherited from interface weblogic.descriptor.SettableBean | 
|---|
| isSet, unSet | 
| Methods inherited from interface weblogic.management.security.authentication.MemberGroupListerMBean | 
|---|
| listMemberGroups | 
| Methods inherited from interface weblogic.management.security.authentication.GroupReaderMBean | 
|---|
| getGroupDescription, groupExists, isMember, listGroups | 
| Methods inherited from interface weblogic.management.utils.NameListerMBean | 
|---|
| getCurrentName | 
| Methods inherited from interface weblogic.management.utils.ListerMBean | 
|---|
| advance, close, haveCurrent | 
| Methods inherited from interface weblogic.descriptor.DescriptorBean | 
|---|
| addPropertyChangeListener, createChildCopyIncludingObsolete, getParentBean, isEditable, removePropertyChangeListener | 
| Methods inherited from interface weblogic.descriptor.SettableBean | 
|---|
| isSet, unSet | 
| Methods inherited from interface weblogic.management.security.authentication.UserPasswordEditorMBean | 
|---|
| changeUserPassword, resetUserPassword | 
| Methods inherited from interface weblogic.management.security.authentication.GroupMembershipHierarchyCacheMBean | 
|---|
| getGroupHierarchyCacheTTL, getMaxGroupHierarchiesInCache, setGroupHierarchyCacheTTL, setMaxGroupHierarchiesInCache | 
| Method Detail | 
|---|
String getUserObjectClass()
The name of the LDAP object class that stores users.
getUserObjectClass in interface LDAPAuthenticatorMBean
void setUserObjectClass(String newValue)
                        throws InvalidAttributeValueException
The name of the LDAP object class that stores users.
setUserObjectClass in interface LDAPAuthenticatorMBeannewValue - - new value for attribute UserObjectClass
InvalidAttributeValueExceptionString getUserNameAttribute()
The attribute of the LDAP User object that specifies the name of the user. The default value is "cn". In Active Directory, generally, cn stores a string that is a combination of the user's first name and last name, and sAMAccountName stores the user's login name. So it is recommended that you set "sAMAccountName" to this property before using the Active Directory LDAP Authentication provider. It is for backward compatibility purpose that the default value is "cn" instead of "sAMAccountName".
getUserNameAttribute in interface LDAPAuthenticatorMBean
void setUserNameAttribute(String newValue)
                          throws InvalidAttributeValueException
The attribute of the LDAP User object that specifies the name of the user. The default value is "cn". In Active Directory, generally, cn stores a string that is a combination of the user's first name and last name, and sAMAccountName stores the user's login name. So it is recommended that you set "sAMAccountName" to this property before using the Active Directory LDAP Authentication provider. It is for backward compatibility purpose that the default value is "cn" instead of "sAMAccountName".
setUserNameAttribute in interface LDAPAuthenticatorMBeannewValue - - new value for attribute UserNameAttribute
InvalidAttributeValueExceptionString getUserBaseDN()
The base Distinguished Name (DN) of the tree in the LDAP directory that contains users.
getUserBaseDN in interface LDAPAuthenticatorMBean
void setUserBaseDN(String newValue)
                   throws InvalidAttributeValueException
The base Distinguished Name (DN) of the tree in the LDAP directory that contains users.
setUserBaseDN in interface LDAPAuthenticatorMBeannewValue - - new value for attribute UserBaseDN
InvalidAttributeValueExceptionString getUserFromNameFilter()
LDAP search filter for finding a user given the name of the user. The default value is "(&(cn=%u)(objectclass=user))". In Active Directory, generally, cn stores a string that is a combination of the user's first name and last name, and sAMAccountName stores the user's login name. So it is recommended that you set "(&(sAMAccountName=%u)(objectclass=user))" to this property before using the Active Directory LDAP Authentication provider. It is for backward compatibility purpose that the default value is "(&(cn=%u)(objectclass=user))" instead of "(&(sAMAccountName=%u)(objectclass=user))".
getUserFromNameFilter in interface LDAPAuthenticatorMBean
void setUserFromNameFilter(String newValue)
                           throws InvalidAttributeValueException
LDAP search filter for finding a user given the name of the user. The default value is "(&(cn=%u)(objectclass=user))". In Active Directory, generally, cn stores a string that is a combination of the user's first name and last name, and sAMAccountName stores the user's login name. So it is recommended that you set "(&(sAMAccountName=%u)(objectclass=user))" to this property before using the Active Directory LDAP Authentication provider. It is for backward compatibility purpose that the default value is "(&(cn=%u)(objectclass=user))" instead of "(&(sAMAccountName=%u)(objectclass=user))".
setUserFromNameFilter in interface LDAPAuthenticatorMBeannewValue - - new value for attribute UserFromNameFilter
InvalidAttributeValueExceptionString getGroupBaseDN()
The attribute of an LDAP user object that specifies the Distinguished Names (DNs) of dynamic groups to which the user belongs.
getGroupBaseDN in interface LDAPAuthenticatorMBean
void setGroupBaseDN(String newValue)
                    throws InvalidAttributeValueException
The attribute of an LDAP user object that specifies the Distinguished Names (DNs) of dynamic groups to which the user belongs.
setGroupBaseDN in interface LDAPAuthenticatorMBeannewValue - - new value for attribute GroupBaseDN
InvalidAttributeValueExceptionString getGroupFromNameFilter()
LDAP search filter for finding a group given the name of the group. If the attribute is not specified (that is, if the attribute is null or empty), a default search filter is created based on the group schema.
getGroupFromNameFilter in interface LDAPAuthenticatorMBean
void setGroupFromNameFilter(String newValue)
                            throws InvalidAttributeValueException
LDAP search filter for finding a group given the name of the group. If the attribute is not specified (that is, if the attribute is null or empty), a default search filter is created based on the group schema.
setGroupFromNameFilter in interface LDAPAuthenticatorMBeannewValue - - new value for attribute GroupFromNameFilter
InvalidAttributeValueExceptionString getStaticGroupDNsfromMemberDNFilter()
An LDAP search filter that, given the distinguished name (DN) of a member of a group, returns the DNs of the static LDAP groups that contain that member.
getStaticGroupDNsfromMemberDNFilter in interface LDAPAuthenticatorMBean
void setStaticGroupDNsfromMemberDNFilter(String newValue)
                                         throws InvalidAttributeValueException
An LDAP search filter that, given the distinguished name (DN) of a member of a group, returns the DNs of the static LDAP groups that contain that member.
setStaticGroupDNsfromMemberDNFilter in interface LDAPAuthenticatorMBeannewValue - - new value for attribute StaticGroupDNsfromMemberDNFilter
InvalidAttributeValueExceptionString getStaticGroupObjectClass()
The name of the LDAP object class that stores static groups.
getStaticGroupObjectClass in interface LDAPAuthenticatorMBean
void setStaticGroupObjectClass(String newValue)
                               throws InvalidAttributeValueException
The name of the LDAP object class that stores static groups.
setStaticGroupObjectClass in interface LDAPAuthenticatorMBeannewValue - - new value for attribute StaticGroupObjectClass
InvalidAttributeValueExceptionString getStaticMemberDNAttribute()
The attribute of the LDAP static group object that specifies the distinguished names (DNs) of the members of the group.
getStaticMemberDNAttribute in interface LDAPAuthenticatorMBean
void setStaticMemberDNAttribute(String newValue)
                                throws InvalidAttributeValueException
The attribute of the LDAP static group object that specifies the distinguished names (DNs) of the members of the group.
setStaticMemberDNAttribute in interface LDAPAuthenticatorMBeannewValue - - new value for attribute StaticMemberDNAttribute
InvalidAttributeValueExceptionBoolean getUseTokenGroupsForGroupMembershipLookup()
Boolean value that indicates whether to use TokenGroups attribute lookup algorithm instead of the standard recursive group membership lookup algorithm.
void setUseTokenGroupsForGroupMembershipLookup(Boolean newValue)
                                               throws InvalidAttributeValueException
Boolean value that indicates whether to use TokenGroups attribute lookup algorithm instead of the standard recursive group membership lookup algorithm.
newValue - - new value for attribute UseTokenGroupsForGroupMembershipLookup
InvalidAttributeValueExceptionBoolean getEnableSIDtoGroupLookupCaching()
Boolean value that indicates whether SID to group name lookup results are cached or not. This is only used if the token group membership lookup algorithm is enabled.
void setEnableSIDtoGroupLookupCaching(Boolean newValue)
                                      throws InvalidAttributeValueException
Boolean value that indicates whether SID to group name lookup results are cached or not. This is only used if the token group membership lookup algorithm is enabled.
newValue - - new value for attribute EnableSIDtoGroupLookupCaching
InvalidAttributeValueExceptionInteger getMaxSIDToGroupLookupsInCache()
The maximum size of the LRU cache for holding SID to group lookups if caching of SID to group name mappings is enabled and if the tokenGroups group membership lookup is enabled. The default is 500.
void setMaxSIDToGroupLookupsInCache(Integer newValue)
                                    throws InvalidAttributeValueException
The maximum size of the LRU cache for holding SID to group lookups if caching of SID to group name mappings is enabled and if the tokenGroups group membership lookup is enabled. The default is 500.
newValue - - new value for attribute MaxSIDToGroupLookupsInCache
InvalidAttributeValueExceptionString getGuidAttribute()
Specifies the name of the GUID attribute defined in the Active Directory LDAP server.           The default value is objectguid.
getGuidAttribute in interface LDAPAuthenticatorMBean
void setGuidAttribute(String newValue)
                      throws InvalidAttributeValueException
Specifies the name of the GUID attribute defined in the Active Directory LDAP server.           The default value is objectguid.
setGuidAttribute in interface LDAPAuthenticatorMBeannewValue - - new value for attribute GuidAttribute
InvalidAttributeValueExceptionString getName()
ProviderMBean
getName in interface LDAPAuthenticatorMBeangetName in interface LoginExceptionPropagatorMBeangetName in interface ProviderMBeangetName in interface StandardInterface| 
 | Copyright 1996, 2013, Oracle and/or its affiliates. All rights reserved. Oracle is a registered trademark of Oracle Corporation and/or its affiliates. Other names may be trademarks of their respective owners. Oracle Fusion Middleware Java API Reference for Oracle WebLogic Server 12c (12.1.2) Part Number E27170-01 | |||||||||
| PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
| SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD | |||||||||