Use this page to manage the pool of security managers available for Directory Server and enterprise servers to use for resolving
security queries.
You can have multiple definitions for any given external security manager. Each definition may be used by Directory Server
and one or more enterprise servers.
Click
+Add to add a new security manager. This opens the
External Security Manager Configuration dialog box.
- Name
- Specify the name used to identify the security manager.
- Module
- Specify the module used to access an external security manager or to implement the security rules. If you specify it with
a relative path (which includes no path) it is relative to
$COBDIR/bin.
- Enabled
- Check this to enable this security manager. If it is disabled, it will be ignored by Directory Server and those enterprise
servers that reference it.
- Connection Path
- If the module requires a connection string that tells it how to connect to the external security manager, specify it here.
The information supplied in the string and its format depend on the module that you are using. See the documentation supplied
with the module for more information.
- Authorized ID
- If the module requires credentials to connect to the external security manager, specify them here. As with the connection
path, the content and format of these fields depend on the module that you are using. See the documentation supplied with
the module for more information.
- Password
- The password for the authorized ID.
- Description
- Specify a description of the security manager.
- Configuration Information
- Specify any additional configuration settings that the module requires.
- Cache limit
- If the module has a configurable cache for holding responses from the security manager, enter its maximum size in kilobytes
here.
- Cache TTL
- If the module has a configurable cache for holding responses from the security manager, enter the maximum time in seconds
that an entry in the cache can be used to satisfy requests before the details must be required from the security manager.
Note: Enterprise Server and Directory Server also have their own configurable caches for security information. These are checked
before submitting queries to the security manager module.
In the defined external security managers list, the
Used By column displays the security manager lists that include this security manager.
To edit an external security manager, click
Edit at the end of the row for the security manager you want to modify.
To remove an external security manager, click
Remove at the end of the row for the security manager you want to remove.