Red Hat Directory Server 8.0 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX Red Hat Directory Server Software

511

512

513

514

515

516

517

518

519

520

NOTE

The LDAP URL (ldap|ldaps://authDS/subtree) must be separated from the

optional parameters (maxconns, maxops, timeout, ldver, connlifetime) by a single

space. If any of the optional parameters are defined, all of them must be defined,

even if only the default values are used.

Several authenticating directories or subtrees can be specified by incrementing

the nsslapd-pluginarg attribute suffix by one each time, as in Section 4.2,

“Specifying Multiple Authenticating Directory Servers”. For example:

nsslapd-pluginarg0: LDAP URL for the first server

nsslapd-pluginarg1: LDAP URL for the second server

nsslapd-pluginarg2: LDAP URL for the third server

...

The optional parameters are described in the following table in the order in which they appear in

the syntax.

Variable Definition

state Defines whether the plug-in is enabled or

disabled. Acceptable values are on or off.

See Section 3.1, “Turning the Plug-in On or

Off” for more information.

ldap|ldaps Defines whether SSL is used for

communication between the two Directory

Servers. See Section 3.2, “Configuring the

Servers to Use a Secure Connection” for

more information.

authDS The authenticating directory hostname. The

port number of the Directory Server can be

given by adding a colon and then the port

number. For example,

ldap://dirserver.example.com:389/. If

the port number is not specified, the PTA

server attempts to connect using either of the

standard ports:

Port 389 if ldap:// is specified in the URL.

Port 636 if ldaps:// is specified in the URL.

See Section 3.3, “Specifying the

Authenticating Directory Server” for more

information.

PTA Plug-in Syntax

493