Red Hat Directory Server 8.0 Administrator's Guide
For information on the variable components in this syntax, see Table 17.1, “PTA Plug-in
Parameters”.
2. Restart the server.
1
service dirsrv restart instance_name
3.5. Configuring the Optional Parameters
Additional parameters the control the PTA connection can be set with the LDAP URL.
ldap|ldaps://authDS/subtree maxconns, maxops, timeout, ldver, connlifetime
• The maximum number of connections the PTA Directory Server can open simultaneously to
the authenticating directory, represented by maxconns in the PTA syntax. The default value is
3.
• The maximum number of bind requests the PTA Directory Server can send simultaneously to
the authenticating Directory Server within a single connection. In the PTA syntax, this
parameter is maxops. The default is value is 5.
• The time limit for the PTA Directory Server to wait for a response from the authenticating
Directory Server. In the PTA syntax, this parameter is timeout. The default value is 300
seconds (five minutes).
• The version of the LDAP protocol for the PTA Directory Server to use to connect to the
authenticating Directory Server. In the PTA syntax, this parameter is ldver. The default is
LDAPv3.
• The time limit in seconds within which a connection may be used. If a bind request is initiated
by a client after this time has expired, the server closes the connection and opens a new
connection to the authenticating Directory Server. The server will not close the connection
unless a bind request is initiated and the server determines the timeout has been exceeded. If
this option is not specified or if only one authenticating Directory Server is listed in the authDS
parameter, no time limit will be enforced. If two or more hosts are listed, the default is 300
seconds (five minutes). In the PTA syntax, this parameter is connlifetime.
1. Use ldapmodify to edit the plug-in entry.
ldapmodify -p 389 -D "cn=Directory Manager" -w password -h example
dn: cn=Pass Through Authentication,cn=plugins,cn=config
changetype: modify
replace: nsslapd-pluginarg0
Chapter 17. Using the Pass-through Authentication Plug-in
498