The other fields of the Security Manager screen are used by the
MLDAP ESM Module as follows:
- Connection Path
- This is the location of the LDAP server, specified as a hostname or IP address, optionally followed by a colon and a port.
The default is localhost:389 (389 is the typical default port for LDAP).
- Authorized ID
- The username used to bind to the LDAP server. The format for this is server dependent, but is usually a Distinguished Name
(DN). This user should have read access to the
Enterprise Server user, group, and resource objects in the LDAP repository, and needs to have modify access to user definitions if you wish
to support letting users change their passwords from
Enterprise Server (for example from the CICS signon screen). The default is
CN=MFReader,CN=ADAM Users,CN=Micro Focus,CN=Program Data,DC=local (though the last three components can be changed by setting the base DN; see below), which is the user object created for
this purpose in the sample configuration.
- Password
- The password used to bind to the LDAP server. The default is the password used in the sample configuration.
- Enabled
- If this box is unchecked, ESF Manager will not load, initialize, or pass requests to this
ESM Module. In a future release it will be possible to dynamically enable and disable
ESM Modules while the region is running.
- Cache limit
- The size of the LDAP search-result cache, in kilobytes. If this is set to 0, LDAP search-result caching is disabled.
- Cache TTL
- The Time To Live (TTL) or lifetime of entries in the LDAP search-result cache, in seconds. If this is set to 0, LDAP search-result
caching is disabled.