Cloudscape Properties
Page 5 of 47

cloudscape.authentication.ldap.searchFilter

Function

Specifies the search filter to use to determine what constitutes a user (and other search predicate) for Cloudscape searches for a full DN during user authentication.

If you set this property to cloudscape.user, Cloudscape looks for cached full DNs for users that you have defined with the cloudscape.user.UserName property. For other users, Cloudscape performs a search using the default search filter.

For more information about LDAP user authentication, see LDAP Directory Service of the Cloudscape Developer's Guide.

Syntax

cloudscape.authentication.ldap.searchFilter=
    { searchFilter | cloudscape.user)

Default

(&(objectClass=inetOrgPerson)(uid=userName))

NOTE: Cloudscape automatically &s the filter you specify with ((uid=userName)) unless you include %USERNAME% in the definition. You may want to use %USERNAME% if your user DNs map the user name to something other than uid (for example, user).

Examples

-- system-wide properties

cloudscape.authentication.ldap.searchFilter=objectClass=person
## people in the marketing department
## Cloudscape automatically adds (uid=<userName>)
cloudscape.authentication.ldap.searchFilter=(&(ou=Marketing)
    (objectClass=person))
## all people but those in marketing
## Cloudscape automatically adds (uid=<userName>)
cloudscape.authentication.ldap.searchFilter=(&(!(ou=Marketing)
    (objectClass=person))
## map %USERNAME% to user, not uid
cloudscape.authentication.ldap.searchFilter=(&((ou=People)
(user=%USERNAME%))
## cache user DNs locally and use the default for others
cloudscape.authentication.ldap.searchFilter=cloudscape.user

-- database-wide property
CALL PropertyInfo.setDatabaseProperty(
    'cloudscape.authentication.ldap.searchFilter',
    'objectClass=person')

-- publishing a database-wide property
CREATE PUBLICATION APub
ADD TARGET DATABASE PROPERTY cloudscape.authentication.ldap.searchFilter=
    'objectClass=person'

Scope

system-wide

database-wide (publishable)

Dynamic or Static

Static. For system-wide properties, you must reboot Cloudscape for the change to take effect. For database-wide properties, you must reboot the database for the change to take effect.