LDAP attribute parameters

The following table lists and provides descriptions of the PPM Server configuration parameters in the LdapAttribute.conf file, which is located in the <PPM_Home>/conf directory. Use the LdapAttribute.conf file to map the attributes of the LDAP server with the attributes used by the PPM Server.

The default mapping uses the standard LDAP attributes. All values are case-sensitive. Do not add spaces between tokens.

Caution: Do not map the ORG_UNIT_NAME and PARENT_ORG_UNIT_NAME parameters in LdapAttribute.conf. These attributes are specified in the KRSC_ORG_UNITS_INT table.

Table A-4. LDAP attribute parameters

Parameter Name(*Required)

Description, Usage

Default, Valid Values, Example

KNTA_USERS_INT

Target table for the import. Can be mapped to any LDAP attribute.

Always map both VISIBLE_USER_DATA and USER_DATA.

To disable default mapping:

1. Either comment out or delete the mapping line.

Mappings:

  • USERNAME = sAMAccountName
  • EMAIL_ADDRESS = mail
  • PHONE_NUMBER = telephoneNumber
  • DEPARTMENT_MEANING = departmentNumber
  • LOCATION_MEANING = locality
  • MANAGER_USERNAME = manager
  • USER_DATA1 = mail
  • VISIBLE_USER_DATA1 = mail
  • DISTINGUISHED_NAME= distinguished name
  • LDAP_USERNAME= LDAP username

2. Add a placeholder parameter to the LdapAttribute.conf file that will add a value to the FIRST_NAME and LAST_NAME fields.

Format:

ColumnName = LDAPAttribute

RSC_RESOURCES_INT

Target table for the import. Can be mapped to any LDAP attribute.

Always map both VISIBLE_USER_DATA and USER_DATA.

To disable default mapping:

1. Either comment out or delete the mapping line.

Mappings:

  • USERNAME = sAMAccountName

  • USER_DATA1 = mail

  • VISIBLE_USER_DATA1 = mail

2. Add a placeholder parameter to the LdapAttribute.conf file that will add a value to the FIRST_NAME and LAST_NAME fields.

Format:

USERNAME = sAMAccountName

LDAP_TIME_FORMAT

Attribute that keeps track of the time format that the LDAP server uses.

Format for Active Directory servers: yyyyMMddHHmmss'.0Z'

Format for Sun Java System Active Server Pages LDAP server:

yyyyMMddHHmmss'Z'

LDAP_USER_OBJECTCLASS

Object class attribute for a user on the LDAP server.

Default: person