The MBean that represents configuration atrributes for the WebLogic LDAP X509 Identity Assertion provider. The WebLogic LDAP X509 Identity Assertion provider supports certificate authentication.
| Fully Qualified Interface Name | If you use the getMBeanInfo operation in MBeanTypeServiceMBean, supply the following value as this MBean's fully qualified interface name:weblogic.security.providers.authentication.LDAPX509IdentityAsserterMBean
|
||
| Factory Methods | No factory methods. Instances of this MBean are created automatically. | ||
| Access Points Inherited from AuthenticationProviderMBean |
Because this MBean extends or implements AuthenticationProviderMBean, you can also access this MBean by retrieving AuthenticationProviderMBeans. The following attributes contain AuthenticationProviderMBeans and its subtypes:
|
This section describes attributes that provide access to other MBeans.
|
|
Returns the realm that contains this security provider. Returns null if this security provider is not contained by a realm.
| Privileges | Read only |
| Type | RealmMBean |
| Relationship type: | Reference. |
This section describes the following attributes:
The token types that are currently active.
| Privileges | Read/Write |
| Type | class java.lang.String[] |
| Default Value | X.509 |
Returns whether the tokens that are passed to the Identity
Assertion provider will be base64 decoded first. If
false then the server will not base64 decode the token
before passing it to the identity asserter. This defaults to
true for backwards compatibility but most providers
will probably want to set this to false.
| Privileges | Read/Write |
| Type | boolean |
| Default Value | true |
Returns whether to anonymously bind when following referrals within the LDAP directory. If set to false, then the current Principal and Credential will be used.
| Privileges | Read/Write |
| Type | boolean |
Returns whether to cache LDAP requests with the LDAP server.
| Privileges | Read/Write |
| Type | boolean |
| Default Value | true |
Returns the size of the cache in K.
| Privileges | Read/Write |
| Type | int |
| Default Value | 32 |
| Minimum value | 0 |
Returns the time-to-live (TTL) of the cache in seconds.
| Privileges | Read/Write |
| Type | int |
| Default Value | 60 |
| Minimum value | 0 |
The name of the LDAP attribute representing the user's identity.
| Privileges | Read/Write |
| Type | java.lang.String |
| Default Value | userCertificate;binary |
Mapping of certificate attributes to directory attributes.
| Privileges | Read/Write |
| Type | java.lang.String |
| Default Value | ou=people,ou=$subj.ou,o=$subj.o,c=$subj.c |
The LDAP connection pool size. Default is 6.
| Privileges | Read/Write |
| Type | int |
| Default Value | 6 |
Specifies the number of times to attempt to connect to the LDAP server if the initial connection failed.
| Privileges | Read/Write |
| Type | int |
| Default Value | 1 |
Returns the maximum number of seconds to wait for the LDAP connection to be established. If set to 0, there is no maximum time limit.
| Privileges | Read/Write |
| Type | int |
| Default Value | 0 |
The credential (generally a password) used to authenticate the LDAP user that is defined in the Principal attribute.
| Privileges | Read/Write |
| Type | java.lang.String |
| Encrypted | true |
| Privileges | Read/Write |
| Type | byte[] |
| Encrypted | true |
A short description of the WebLogic LDAP X509 Identity Assertion provider.
| Privileges | Read only |
| Type | java.lang.String |
| Default Value | Provider that performs identity assertion for X.509 certificates |
| Redeploy or Restart required | Changes take effect after you redeploy the module or restart the server. |
Returns whether referrals will automatically be followed within the LDAP Directory. If set to false, then a Referral exception will be thrown when referrals are encountered during LDAP requests.
| Privileges | Read/Write |
| Type | boolean |
| Default Value | true |
Returns the host name or IP address of the LDAP server.
| Privileges | Read/Write |
| Type | java.lang.String |
| Default Value | localhost |
| Privileges | Read only |
| Type | java.lang.String |
| Default Value | LDAPX509IdentityAsserter |
| Redeploy or Restart required | Changes take effect after you redeploy the module or restart the server. |
Returns the number of seconds to delay when making concurrent attempts to connect to multiple servers.
If set to 0, connection attempts are serialized. An attempt is made to connect to the first server in the list. The next entry in the list is tried only if the attempt to connect to the current host fails. This might cause your application to block for unacceptably long time if a host is down. If set to greater than 0, another connection setup thread is started after this number of delay seconds has passed.
| Privileges | Read/Write |
| Type | int |
| Default Value | 0 |
Returns the port number on which the LDAP server is listening.
| Privileges | Read/Write |
| Type | int |
| Default Value | 389 |
| Minimum value | 1 |
| Maximum value | 65534 |
Returns the Distinguished Name (DN) of the LDAP user that is used by WebLogic Server to connect to the LDAP server.
| Privileges | Read/Write |
| Type | java.lang.String |
The name of the Java class used to load the WebLogic LDAP X509 Identity Assertion provider.
| Privileges | Read only |
| Type | java.lang.String |
| Default Value | weblogic.security.providers.authentication.LDAPX509IdentityAsserterProviderImpl |
| Redeploy or Restart required | Changes take effect after you redeploy the module or restart the server. |
Returns the maximum number of milliseconds to wait for results before timing out. If set to 0, there is no maximum time limit.
| Privileges | Read/Write |
| Type | int |
| Default Value | 0 |
Returns whether SSL will be used to connect to the LDAP server.
| Privileges | Read/Write |
| Type | boolean |
The token types supported by the WebLogic LDAP X509 Identity Assertion provider.
| Privileges | Read only |
| Type | class java.lang.String[] |
| Default Value | X.509 |
| Redeploy or Restart required | Changes take effect after you redeploy the module or restart the server. |
The name of the certificate attribute from the subject DN used to find the user in the directory.
| Privileges | Read/Write |
| Type | class java.lang.String[] |
| Default Value | cn=$subj.cn |
The name of the LDAP attribute used to assert the user's identity.
| Privileges | Read/Write |
| Type | java.lang.String |
| Default Value | cn |
The version number of the WebLogic LDAP X509 Identity Assertion provider.
| Privileges | Read only |
| Type | java.lang.String |
| Default Value | 1.0 |
| Redeploy or Restart required | Changes take effect after you redeploy the module or restart the server. |
This section describes the following operations:
Returns true if the specified attribute has been set explicitly in this MBean instance.
| Operation Name | "isSet" |
| Parameters | Object [] { propertyName }
where:
|
| Signature | String [] {
"java.lang.String" } |
| Returns |
boolean
|
| Exceptions |
|
Restore the given property to its default value.
| Operation Name | "unSet" |
| Parameters | Object [] { propertyName }
where:
|
| Signature | String [] {
"java.lang.String" } |
| Returns |
void
|
| Exceptions |
|
Returns the display name of an MBean.
Deprecated 9.0.0.0
| Operation Name | "wls_getDisplayName" |
| Parameters | null |
| Signature | null |
| Returns | String
|