IBM Tivoli Directory Server LDAP Filters (idsLdapFilterProperties)

Specifies the list of IBM Tivoli Directory Server LDAP filters.

NameTypeDefaultDescription

groupFilter

string

(&(cn=%v)(|(objectclass=groupOfNames)(objectclass=groupOfUniqueNames)(objectclass=groupOfURLs)))

An LDAP filter clause for searching the user registry for groups. When defined, this filter requires an Attribute Value Assertion (AVA) containing a %v. For example, cn=%v. During searches, the %v in the AVA is replaced with the group or group pattern being searched for.

groupIdMap

string

*:cn

An LDAP filter that maps the name of a group to an LDAP entry.

groupMemberIdMap

string

ibm-allGroups:member;ibm-allGroups:uniqueMember;groupOfNames:member;groupOfUniqueNames:uniqueMember

An LDAP filter that identifies user to group memberships.

id

string

A unique configuration ID.

userFilter

string

(&(uid=%v)(objectclass=ePerson))

An LDAP filter clause for searching the user registry for users. When defined, this filter requires an Attribute Value Assertion (AVA) containing a %v. For example, uid=%v. During searches, the %v in the AVA is replaced with the user or user pattern being searched for.

userIdMap

string

*:uid

An LDAP filter that maps the name of a user to an LDAP entry.