The LDAP Server Fields
[v11.2.0 and up] The LDAP Server fields appear when either Authentication or Authorization is ldap
.
Field |
Description |
---|---|
LDAP Server URI |
The URI for the LDAP server. Required if either Authentication or Authorization is |
LDAP Base |
The base DN for user lookup. Required if either Authentication or Authorization is |
LDAP Attribute |
The name of the attribute (for example, |
LDAP Default User |
The LDAP default user. Required if either Authorization = |
LDAP Password |
The password for the LDAP Default User. Required if either Authorization is |
Confirm LDAP Password |
Field to confirm the LDAP Password. |
LDAP Bind Method |
|
LDAP Memberof Attribute |
(Optional) The LDAP attribute for group lookup. If not specified, |
LDAP Member Attribute |
(Optional) The LDAP attribute for group lookup. If not specified, |
LDAP Start TLS |
Whether or not to use start TLS request to the LDAP server. Set to |
LDAP Certificate |
The PEM-encoded X.509 certificate for MarkLogic Server to connect the LDAP server using mutual authentication. Required if LDAP Bind Method is |
LDAP Private Key |
The PEM-encoded private key corresponding to the LDAP Certificate. Required if LDAP Bind Method is |
LDAP Nested Lookup |
Whether or not to perform nested group lookup. |
LDAP Remove Domain |
Whether or not to remove |
LDAP Negative Cache Timeout |
The LDAP negative cache timeout in seconds. MarkLogic Server caches negative lookups to avoid overloading the external LDAP server. NoteClear the cache by calling sec:external-security-clear-cache(). |