1. User Guide and Online Help
  2. Settings and administration
  3. Manage users, login groups, and work teams
  4. Manage LDAP users
  5. LDAP properties

LDAP properties

For reference, you can use the following properties to configure the Oracle Empirica Signal application for use with LDAP. Some properties apply only to certain directory types. You configure these properties in the appropriate ldap properties file. For more information, see Configure Oracle Empirica Signal for use with LDAP.

Property Description

auth.mode

Authentication method. Specify kerberos or ldap.

auth.jndi.java.naming.factory.initial

Implementation class for JNDI LDAP provider used during LDAP user authentication. Specify com.sun.jndi.ldap.LdapCtxFactory.

auth.kerberos.host

Hostname for the Kerberos Key Distribution Center (KDC) used during Kerberos-based user authentication.

auth.kerberos.port

Port for the Kerberos Key Distribution Center (KDC) used during Kerberos-based user authentication.

auth.kerberos.domain

Domain used during Kerberos-based user authentication.

auth.jndi.java.naming.security.protocol

Security protocol used during LDAP-based user authentication.

Specify one of the following:

  • none - LDAP
  • ssl - LDAPS

auth.jndi.java.naming.provider.url

Hostname and port used during LDAP-based user authentication.

auth.jndi.java.naming.security.authentication

Authentication mode used during LDAP-based user authentication. Specify simple.

search.jndi.java.naming.factory.initial

Implementation class for JNDI LDAP provider used during user search and import. Specify com.sun.jndi.ldap.LdapCtxFactory.

search.jndi.java.naming.security.protocol

Security protocol used during LDAP user search and import. Specify one of the following:

  • none - LDAP
  • ssl - LDAPS

search.jndi.java.naming.provider.url

Hostname and the port used during LDAP user search and import. When importing users or changing a user to LDAP authentication, all searches begin in the specified root.

search.jndi.java.naming.security.authentication

Authentication mode used during LDAP user search and import. Specify one of the following:

  • none - Anonymous connections.
  • simple - Search as a specific user.

search.jndi.java.naming.security.principal

Stores LDAP user name that resides in the LdapCredentials key. For more information, see Oracle Health Sciences Empirica Signal Installation Guide.

search.jndi.java.naming.security.credentials

Stores LDAP password that resides in the LdapCredentials key. For more information, see Oracle Health Sciences Empirica Signal Installation Guide.

search.jndi.java.naming.referral

Indicates whether the LDAP provider follows referrals during a user search and import. Specify follow.

search.controls.timelimit

Maximum number of seconds that a query of the LDAP server can take before the LDAP connection times out.

search.controls.countlimit

Maximum number of users that can be received from the LDAP server before the LDAP connection times out.

search.root

LDAP search root used during LDAP user search and import.

search.syncroot

LDAP search root used during LDAP refresh/sync of users. Generally should be the same as search.root.

search.nameAttribute

LDAP attribute which is searched upon in the Import LDAP User page.

search.emailAttribute

LDAP attribute used to populate a Signal user's email address during an import/sync operation.

search.usernameAttribute

LDAP attribute used to populate a Signal user's user name during an import/sync operation.

Oracle Empirica Signal ensures that the user name in Oracle Empirica Signal matches the user name in the directory during an import or refresh operation.

search.firstNameAttribute

LDAP attribute used to populate an Oracle Empirica Signal user's first name during an import/sync operation.

search.lastNameAttribute

LDAP attribute used to populate an Oracle Empirica Signal user's last name during an import/sync operation.

search.kerberosIdAttribute

LDAP attribute used to identify an Oracle Empirica Signal user during Kerberos authentication.

search.syncIdAttribute

LDAP attribute used to identify an Oracle Empirica Signal user during a refresh/sync operation.

Typically, this is an attribute that is not subject to change, such as an employee ID.

search.searchQuery

LDAP search query used when the user specifies a search string on the Import LDAP User page.

search.searchQueryNF

LDAP search query used when the user leaves the search string blank on the Import LDAP User page.

search.syncQuery

LDAP sync query used when refreshing users.

Parent topic: Manage LDAP users