User guide

ManualsBrandsRed Hat ManualsComputer equipmentNETSCAPE ENTERPRISE SERVER 6.0 - NSAPI PROGRAMMER GUIDE

301

302

303

304

305

306

307

308

309

310

Appendix A: Samples of User Program Descriptions

A-4

Registering User Information in the SSO Repository

This sample program assumes the environment setup below. Change the setup according to the actual

environment used.

• The public directory at creation of the repository is "ou=interstage,o=fujitsu,dc=com".

• The storage location of user information is "ou=User,ou=interstage,o=fujitsu,dc=com".

• RDN of user information is expressed by "cn".

• The result of common preprocessing is used as the value of "ctx".

• User information is read from the CSV file named "sample.csv" to be processed.

Note

Since the CSV file includes passwords, the file must be handled carefully to protect the password from

attack.

For details about the measures that can be taken against password attack, refer to "Security Measures"

under "Interstage Single Sign-on" of "Security Risks" of “Security Risks and Measures“ of the Security

System Guide.

Description of CSV File

Example

The CSV format uses the comma (,) as the delimiter. In this sample file, user attributes are described in

the following order:

1. cn 2. sn 3. uid 4. userPassword

5. employeeNumber 6. mail 7. ssoAuthType 8. ssoCredentialTTL

9. ssoNotBefore (*1) 10. ssoNotAfter 11. ssoUserStatus 12. ssoRoleName

The numbers shown at the top of the sample file below indicate the correspondence between user

information and the above attributes. Do not describe the numbers in the actual CSV file.

*1 In the following example, the date is specified in the format YYYYMMDDHHMMSS+XXXX.

"+XXXX" refers to the time difference from UTC (Universal Time Coordinate ). In cases where "-

XXXX" is used, it means the same as above.

1 2 3 4 5 6 7

8 9 10 11 12

user001, user001, user001, user001,100001,

user001@interstage.fujitsu.com,basicAuthOrCertAuth,60,20010101090000+0900,,

good,Admin

user002, user002, user002, user002,100002,

user002@interstage.fujitsu.com,basicAuthOrCertAuth,60,20010101090000+0900,,

good,Admin

user003, user003, user003, user003,100003,

user003@interstage.fujitsu.com,basicAuthOrCertAuth,60,20010101090000+0900,,

good,Leader