Neoview User Management and Security Administration Guide (R2.5)

ManualsBrandsHP ManualsSoftwareHP Neoview Release 2.5 Software

domainName

The domain name of the LDAP server, or the predefined value default (lowercase or

uppercase) to signify the default configuration. This attribute is required in configuration

commands, except the * form of the INFO SERVER command.

The value is a text field with a minimum length of 1 character and a maximum of 50 characters.

Any character is permitted. However:

• For openLDAP the domain name should always be NeoviewDirectoryServer. Upon

receiving a logon request, the LDAP daemon uses the highest-priority server named

NeoviewDirectoryServer to search for and authenticate the target user.

• For Active Directory, the global catalog server, which the LDAP daemon uses for initial

search operations, must have the domain name NeoviewDirectoryServer (and

HPDM enforces this restriction when you specify Global Catalog as the domain type in

the Add Directory Server dialog). The domainName values for individual domain

controllers should match the domain names in your Active Directory configuration.

Upon receiving a logon request, the LDAP daemon:

1. Uses the highest-priority server named NeoviewDirectoryServer to search for

the target user.

2. Discovers the user's domain name in the DomainNameAttribute .

3. Contacts the LDAP server with the correspondingdomainName to authenticate the

user's credentials.

UsagePri

The usage priority of this server. When the Neoview LDAP daemon receives a logon request,

it uses the server with the highest priority to authenticate the request. If that server fails to

respond, the LDAP daemon tries the server with the next highest priority.

For example, if you are using Active Directory, the initial search operation is directed to the

NeoviewDirectoryServer with the highest value of UsagePri. A subsequent

authentication request is directed to the highest-priority server that has the domainName

under which the user is registered. The ability to define multiple servers with the same

domainName but different usage priorities lets you define “backup” entries to use if the

highest-priority server is unavailable.

This value is a signed integer in the range 0 to 32767. The default configuration entry always

has a usage priority of 0.

This attribute is required in configuration commands, except in the * form of the INFO

SERVER command.

Host

The host name or IP address of the LDAP server.

This value is a text field with the following characteristics:

• Can contain a maximum of 128 characters.

• Must be a valid DNS name or IP address.

• If the LDAP server uses SSL or TLS, the hostname must be fully qualified, may not be

specified as an IP address, and must match the name specified in the SSL certificate on

the machine where the external directory server is running.

The initial value in the default configuration, as provided with the software release, is NULL.

When you configure a directory server using the CREATE SERVER command or Add

Directory Server dialog, you specify the host name for that server.

Port

The port number for connecting to the LDAP server.

This value is a positive integer in the range 1 to 65535.

The value in the default configuration, as provided with the software release, is 389. However:

LDAP Server Configuration Interfaces 79