Sun Java System Directory Server LDAP Filters (iplanetLdapFilterProperties)

Specifies the list of Sun Java System Directory Server LDAP filters.

NameTypeDefaultDescription

groupFilter

string

(&(cn=%v)(objectclass=ldapsubentry))

An LDAP filter clause for searching the user registry for groups. When defined, this filter requires an Attribute Value Assertion (AVA) containing a %v. For example, cn=%v. During searches, the %v in the AVA is replaced with the group or group pattern being searched for.

groupIdMap

string

*:cn

An LDAP filter that maps the name of a group to an LDAP entry.

groupMemberIdMap

string

nsRole:nsRole

An LDAP filter that identifies user to group memberships.

id

string

A unique configuration ID.

userFilter

string

(&(uid=%v)(objectclass=inetOrgPerson))

An LDAP filter clause for searching the user registry for users. When defined, this filter requires an Attribute Value Assertion (AVA) containing a %v. For example, uid=%v. During searches, the %v in the AVA is replaced with the user or user pattern being searched for.

userIdMap

string

inetOrgPerson:uid

An LDAP filter that maps the name of a user to an LDAP entry.