Specifications
To change the connection settings for accessing an LDAP directory:
1 Open System Preferences and click Accounts.
2 If the lock icon is locked, unlock it by clicking it and entering the name and password
of an administrator.
3 Click Login Options, then click Edit.
4 Click Open Directory Utility.
5 If the lock icon is locked, unlock it by clicking it and entering the name and password
of an administrator.
6 Click Services.
7 In the list of services, select LDAPv3 and click the Edit (/) button.
8 If the list of server congurations is hidden, click Show Options.
9 In the list, select a server conguration and click Edit.
10 Click Connection and change any of the following settings:
 Conguration Name: Identies this conguration in the list of LDAP directory
congurations. (You can also change the name in the list of LDAP directory congurations.)
 Server Name or IP Address: Species the server’s DNS name or its IP address. (You can
also change this in the list of LDAP directory congurations.)
 Open/close times out in: Species the maximum length of time a connection attempt
can last before the attempt is cancelled.
 Query times out in: Species the maximum length of time a query can last before the
query is cancelled.
 Re-bind attempted in: Species the number of seconds to wait before attempting to
reconnect if the LDAP server fails to respond. To prevent continuous reconnection
attempts, increase this value.
 Connection idles out in: Species the number of minutes to permit an idle or
unresponsive connection to remain open.
 Encrypt using SSL: Determines whether to encrypt communications with the LDAP
directory by using an SSL connection. (You can also change this setting in the list of
LDAP directory congurations.) Before you select the SSL checkbox, ask your Open
Directory administrator if SSL is needed.
 Use custom port: Species a port number other than the standard port for LDAP
connections (389 without SSL, 636 with SSL).
 Ignore server referrals: Determines whether to ignore or follow an LDAP server’s
referral to look on other LDAP servers or replicas for information. Server referrals can
help a computer nd information but can also delay logins or cause other delays if
the computer must verify referrals to other LDAP servers.
 Use LDAPv2 (read only): Determines whether to use the older LDAPv2 protocol for
read-only access to an LDAP directory.
144 Chapter 8 Advanced Directory Client Settings