iamtf_idsource_ldap

authentication

credential to connect to the LDAP server

Valid values are: none, strong, simple

Default: simple

  • type: String
  • optional: true

description

id source description

  • type: String
  • optional: true
  • computed: true

extension

Allows you to use a custom component for a given resource. Components are installed as OSGi bundles in the server. You can refer to a component instance or create a new instance based on its class

  • type: List
  • optional: true

fqcn

component java FQCN. Refers to the OSGi component type or Java class to be instantiated

  • type: String
  • required

osgi_filter

filter to locate the OSGi service (Only when extension type is SERVICE).

  • type: String
  • optional: true

property

list of configuration properties and its values (only when extension type is INSTANCE)

  • type: Set
  • optional: true

type

extension type: SERVICE (for OSGi service references) or INSTANCE (for creating a new instance).

  • type: String
  • optional: true

group_match_mode

Specifies the type of value stored as a groupmember of a group

  • type: String
  • optional: true

groupid_attr

LDAP attribute containing a group identifier

  • type: String
  • optional: true

groupmember_attr

LDAP attribute containing a user identifier in a group

  • type: String
  • optional: true

groups_ctx_dn

DN to search for groups

  • type: String
  • required

ida

identity appliance name

  • type: String
  • required

initial_ctx_factory

Java JNDI initial context factory

  • type: String
  • optional: true

name

id source name

  • type: String
  • required

operational_attrs

Require LDAP operational attributes (useful for LDAP password policy management)

  • type: Bool
  • optional: true

password

credential to connect to the LDAP server

  • type: String
  • required

provider_url

LDAP server connection url: ldaps://localhost:636

  • type: String
  • required

referrals

how to process referrals in a directory node

Valid values are: follow, ignore

Default: follow

  • type: String
  • optional: true

search_scope

LDAP search scope

Valid values are: base, one, subtree and children

Default: subtree

  • type: String
  • optional: true

user_attributes

List of LDAP attributes and the name to be used as claim for a user

  • type: List
  • optional: true

attribute

LDAP attribute

  • type: String
  • required

claim

claim name reported to applications

  • type: String
  • required

userid_attr

LDAP attribute containing a user identifier

  • type: String
  • optional: true

username

credential to connect to the LDAP server

  • type: String
  • required

users_ctx_dn

DN to search for users

  • type: String
  • required
Last Updated:
Contributors: Sebastian