ldapUIDsearchAttribute
CME-MIB ·
.1.3.6.1.4.1.2.3.51.2.4.9.3.6.13
Object
scalar
mandatory
r/w
OctetString
When the binding method selected is Anonymous authentication or Client authentication, the initial bind to the LDAP server is followed by a search request aimed at retrieving specific information about the user, including the user's DN, login permissions, and group ownerships. In order to retrieve this information, the search request must specify the attribute name used to represent userids on that server. Specifically, this name is used as a search filter against the login id entered by the user. This attribute name is configured here. If this field is left blank, a default of uid is used during user authentication. For example, on Active Directory servers, the attribute name used for userids is often sAMAccoutName. When the binding method selected is UPN or Strict UPN, this field defaults automatically to userPrincipalName during user authentication if the userid entered has the form userid@somedomain.
Context
- MIB
- CME-MIB
- OID
.1.3.6.1.4.1.2.3.51.2.4.9.3.6.13- Type
- scalar
- Access
- readwrite
- Status
- mandatory
- Parent
- ldapClientCfg
- Siblings
- 21
Syntax
OctetString
Values & Constraints
Object Constraints
range: 0-64
Related Objects
Sibling Objects
| Object | Type | Syntax | OID |
|---|---|---|---|
| ldapServer1NameOrIPAddress mandatory A NULL terminated 255 byte string that contains the
LDAP server host name or IP address (a.b.c.d). | scalar | OctetString | .1.3.6.1.4.1.2.3.51.2.4.9.3.6.1 |
| ldapBindingMethod mandatory On initial binds to the LDAP server during user authentication, there are
two options:
Client authentication: Bind attempt is made with client DN and password
specified by this co… | scalar | Enumeration | .1.3.6.1.4.1.2.3.51.2.4.9.3.6.10 |
| ldapClientAuthenticationDN mandatory The initial bind to the LDAP server during user authentication can be
performed with anonymous authentication, client based authentication, or UPN.
The client based option require… | scalar | OctetString | .1.3.6.1.4.1.2.3.51.2.4.9.3.6.11 |
| ldapClientAuthenticationPassword mandatory The client authentication password | scalar | OctetString | .1.3.6.1.4.1.2.3.51.2.4.9.3.6.12 |
| ldapGroupSearchAttribute mandatory When the MM Group Filter name is configured, it is necessary to retrieve
from the LDAP server the list of groups that a particular user belongs to.
This is required to do group au… | scalar | OctetString | .1.3.6.1.4.1.2.3.51.2.4.9.3.6.14 |
| ldapLoginPermissionAttribute mandatory When a user successfully authenticates via a LDAP server, it is necessary
to retrieve the login permissions for this user. In order to retrieve these
permissions, the search filte… | scalar | OctetString | .1.3.6.1.4.1.2.3.51.2.4.9.3.6.15 |
| ldapUseDNSOrPreConfiguredServers mandatory The MM contains a Version 2.0 LDAP Client that may be configured to provide
user authentication through one or more LDAP servers. The LDAP server(s) to be
used for authentication … | scalar | Enumeration | .1.3.6.1.4.1.2.3.51.2.4.9.3.6.16 |
| ldapServer1PortNumber mandatory LDAP server port number. | scalar | Integer32 | .1.3.6.1.4.1.2.3.51.2.4.9.3.6.2 |
| ldapRBSModelCfg mandatory There are two mechanisms to authenticate and authorize users on the MM when
using an LDAP-enabled server. The first mechanism (oldPermissionString), also
known as version 1, uses … | scalar | Enumeration | .1.3.6.1.4.1.2.3.51.2.4.9.3.6.20 |
| ldapTargetName mandatory When administrator chooses Enhanced Role Based Security authentication model,
he can associate one MM with one managed target object in Snap-in (one tool
to configure LDAP users … | scalar | OctetString | .1.3.6.1.4.1.2.3.51.2.4.9.3.6.21 |
| ldapAuthCfg mandatory If ldapAuthCfg is set to 0, LDAP server is used to authenticate and authorize
users. If it is set to 1, LDAP server is only used to authenticate users.
Note:LDAP Authen… | scalar | Enumeration | .1.3.6.1.4.1.2.3.51.2.4.9.3.6.22 |
| ldapForestName mandatory LDAP Forest Name.
Note: LDAP Forest Name is only for Active Directory environment. | scalar | OctetString | .1.3.6.1.4.1.2.3.51.2.4.9.3.6.23 |
| ldapDomainName mandatory A NULL terminated 255 byte string that contains the
LDAP Domain Name. | scalar | OctetString | .1.3.6.1.4.1.2.3.51.2.4.9.3.6.24 |
| ldapServer4NameOrIPAddress mandatory A NULL terminated 255 byte string that contains the
LDAP server host name or IP address (a.b.c.d). | scalar | OctetString | .1.3.6.1.4.1.2.3.51.2.4.9.3.6.25 |
| ldapServer4PortNumber mandatory LDAP server port number. | scalar | Integer32 | .1.3.6.1.4.1.2.3.51.2.4.9.3.6.26 |
| ldapServer2NameOrIPAddress mandatory A NULL terminated 255 byte string that contains the
LDAP server host name or IP address (a.b.c.d). | scalar | OctetString | .1.3.6.1.4.1.2.3.51.2.4.9.3.6.3 |
| ldapServer2PortNumber mandatory LDAP server port number. | scalar | Integer32 | .1.3.6.1.4.1.2.3.51.2.4.9.3.6.4 |
| ldapServer3NameOrIPAddress mandatory A NULL terminated 255 byte string that contains the
LDAP server host name or IP address (a.b.c.d). | scalar | OctetString | .1.3.6.1.4.1.2.3.51.2.4.9.3.6.5 |
| ldapServer3PortNumber mandatory LDAP server port number. | scalar | Integer32 | .1.3.6.1.4.1.2.3.51.2.4.9.3.6.6 |
| ldapRootDN mandatory A NULL terminated 255 byte string that contains the
distinguished Name for root entry of directory tree.
An example might look like dn=foobar,dn=com. | scalar | OctetString | .1.3.6.1.4.1.2.3.51.2.4.9.3.6.7 |
| ldapGroupFilter mandatory This filter is used for group authentication. It specifies what group or
groups that this MM belongs to. If left blank, group authentication is
disabled. Otherwise, group authenti… | scalar | OctetString | .1.3.6.1.4.1.2.3.51.2.4.9.3.6.9 |